Hey all,
I have run into a problem moving from an ASA 5525 environment to MX, specifically Anyconnect VPN. Currently the MX is working perfectly with saml and azure, but with the ASA solution we were able to create anyconnect "apps" in azure and apply users to the groups to restrict different access. WIth the MX, I have not found a way to do that. We have a lot of contractors and allowing full access to our network is not something I am willing to do.
Has anyone out there successfully done something like this? I keep reading that SAML groups are in the works but I see no evidence that its coming anytime soon.
cheers!
-Josh