Contents
l
Cisco ASA 5500 Series Configuration Guide using the CLI
Viewing the Username Configuration 67-79
Configuring Attributes for Specific Users 67-79
Setting a User Password and Privilege Level 67-80
Configuring User Attributes 67-80
Configuring VPN User Attributes 67-81
Configuring Clientless SSL VPN Access for Specific Users 67-85
CHAPTER
68 Configuring IP Addresses for VPNs 68-1
Configuring an IP Address Assignment Method 68-1
Configuring Local IP Address Pools 68-2
Configuring AAA Addressing 68-2
Configuring DHCP Addressing 68-3
CHAPTER
69 Configuring Remote Access IPsec VPNs 69-1
Information About Remote Access IPsec VPNs 69-1
Licensing Requirements for Remote Access IPsec VPNs 69-2
Guidelines and Limitations 69-7
Configuring Remote Access IPsec VPNs 69-7
Configuring Interfaces 69-7
Configuring ISAKMP Policy and Enabling ISAKMP on the Outside Interface 69-8
Configuring an Address Pool 69-9
Adding a User 69-10
Creating an IKEv1 Transform Set or IKEv2 Proposal 69-10
Defining a Tunnel Group 69-11
Creating a Dynamic Crypto Map 69-12
Creating a Crypto Map Entry to Use the Dynamic Crypto Map 69-13
Saving the Security Appliance Configuration 69-14
Configuration Examples for Remote Access IPsec VPNs 69-14
Feature History for Remote Access VPNs 69-15
CHAPTER
70 Configuring Network Admission Control 70-1
Information about Network Admission Control 70-1
Licensing Requirements 70-2
Prerequisites for NAC 70-4
Guidelines and Limitations 70-4
Viewing the NAC Policies on the Security Appliance 70-5
Adding, Accessing, or Removing a NAC Policy 70-7
Configuring a NAC Policy 70-8