Question: Is it possible to make access through ShrewSoft VPN client based on firewall (or external) user or groups?
I've tried conf like this, but doesn't work.
1. X-Auth config based on local firewall admin:
2. Connection using those local firewall user. Connection OK:
3. VPN Remote Access Policy based on user "testowy2":
This doesn't work.
When I remove "testowy2" from below policy, communication working OK.
Question once again: How I can make VPN policy based on user /group?
Do you have any ideas?
i think you have to do it with IP.
But if you are using a Client Address Pool in your VPN SA Configuration, then you can do Fixed IP Mappings based on the Username which allows you to
do different rules for different IP's/Users.