There are 3 ways a group can be selected using WebVPN for Anyconnect. This can be done by specifying a group URL, group alias, or using a certificate map.
To create a Tunnel Group drop down on the Web VPN login screen do the following:
lab1#configure t
lab1(config)#tunnel-group AdminGroup1 webvpn-att
lab1(config-tunnel-webvpn)#group-alias Admins enable
lab1(config-tunnel-webvpn)#exit
lab1(config)#webvpn
lab1(config-webvpn)#tunnel-group-list enable
This will create a drop down that includes a group called Admins that is connected to the AdminGroup1 Tunnel Group.
A group URL is simular to the Group Alias but the other group names are not displayed.
lab1#configure t
lab1(config)#tunnel-group MarketingGroup type remote-access
lab1(config)#tunnel-group MarketingGroup general-attributes
lab1(config)#group-url https://asa-DNS-name/Marketing enable
lab1(config)#webvpn
lab1(config-webvpn)#tunnel-group-list enable
Certificate access will be covered later
Wednesday, August 4, 2010
How to allow users to select a group during WebVPN login
Subscribe to:
Post Comments (Atom)
Posts
0 comments:
Post a Comment