Jump to content


Photo

Multiple VPNs

X300 VPN

  • Please log in to reply
1 reply to this topic

#1 dspicer

dspicer
  • Members
  • 10 posts

Posted 15 May 2017 - 05:13 PM

We are currently setup to allow company laptops to connect (client-to-site) to the VPN using AD for authentication. I am being asked to allow a group, that is renting out part of the space, so they can connect to the subnet I gave them, which is blocked off from the corporate network.

 

I do not want them to be able to access the corporate network, but is there a way to configure the VPN to give them access but keep them off the corporate network while still using AD to authenticate for my regular users and keeping their access intact?

 

Also currently I have the group set at all (*), how does the Barracuda want the entry for the AD group?

 

Thanks,

David



#2 Steve Vickers

Steve Vickers
  • Barracuda Team Members
  • 45 posts

Posted 05 June 2017 - 03:18 AM

Unfortunately on the X-Series you can't mix AD and local authentication. You'd have to create an AD group for these separate VPN users, but also deny them ability to connect to the domain. The AD group field takes full LDAP strings, but also wildcard so you can specify "*CN=vpnusers*" etc.