I am using a Cisco 5510 firewall and have it configured for web vpn. I have it authenticating against my active directory and was wondering how to block a few individuals. I don't want to make a whole new access list, just block 2 names from the active directory. These users do not have static IP's and can access the web via anywhere. I am not used to CLI , but am handy with asdm. Any ideas?