I am configuring L2TP/IPSec on an ASA 5500 using a number of local users. It works this way:
username bob password 123 mschap username jon password 234 mschap username dan password 567 mschap
username bob attributes vpn-group-policy DefaultRAGroup vpn-tunnel-protocol l2tp-ipsec
username jon attributes vpn-group-policy DefaultRAGroup vpn-tunnel-protocol l2tp-ipsec
username dan attributes vpn-group-policy DefaultRAGroup vpn-tunnel-protocol l2tp-ipsec
It would be nice, however, to be able to group the users and then give the attributes to the group thus not repeating the attributes for each user. Can this be done? I could not find anything on how to do it.
Any suggestions will be appreciated.