How to limit a Cisco VPN Client user to just certain Applications and Files. I don't want to give them full network access.

When I configure remote access for Cisco VPN Clients, they usually have full network access.  It seem to be a default config for that.  I need to limit their access, and I don't quiet know how to do that.  Please give me some directions on doing that.  Thanks
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

You can limit what they can access, but limiting the files and applications they have access to will require modifying their domain group profile to limit them to those domain resources you require.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
whats your router model?
clarencecummingsAuthor Commented:
A Cisco ASA 5520
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

clarencecummingsAuthor Commented:
An ASA 5520 running in router mode
clarencecummingsAuthor Commented:
I understand what is need to do now. I just have to modify their domain group policy.  I will do this next week when I'm back at work.  Thanks
yes we can do , please upload ur ASA config
If you'd like to restrict users to specific server IP numbers, that can be done using the vpn-filter command in the group-policy for the specific VPN group.  
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Internet Protocol Security

From novice to tech pro — start learning today.