65-9
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 65 Configuring Dynamic Access Policies
Understanding VPN Access Policies
When you enter attribute value pairs and click the “Test” button, the DAP subsystem on the device
references these values when evaluating the AAA and endpoint selection attributes for each record. The
results display in the “Test Results” text area.
Fields
• Selection Criteria—Determine the AAA and endpoint attributes to test for dynamic access policy
retrieval.
• AAA Attributes
–
AAA Attribute—Identifies the AAA attribute.
–
Operation Value—Identifies the attribute as =/!= to the given value.
–
Add/Edit—Click to add or edit a AAA attribute.
• Endpoint Attributes—Identifies the endpoint attribute.
–
Endpoint ID—Provides the endpoint attribute ID.
–
Name/Operation/Value—
–
Add/Edit/Delete—Click to add, edit or delete and endpoint attribute.
• Test Result—Displays the result of the test.
• Test—Click to test the retrieval of the policies you have set.
• Close—Click to close the pane.
Modes
The following table shows the modes in which this feature is available:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
•••——
To Next Page
Loading...
Need help?
General
