We are using a Cisco Firewall. We have a bunch of different VPN requirement that we are using and using windows server 2008 R2 Network Policy Server as aour radius server and using network policies to security.
We have 3 different VPN profiles and want them each to a network policy for each one not combine the 3 together as it makes for a security whole as any user can use the 3 dfferent VPN profiles. We want to set it up so VPN profile 1, if your part of the Cisco VPN 1 group, you are allowed to connect to that profile. If your part of that group then you are denied access. VPN profile 2 if your part of Cisco VPN 2 group, you can connect to that profile only, etc. Right now if any user is part of Cisco VPN 1 or Cisco VPN 2 security group, it is allowing them to connect to either VPN profile.
How can you set this up to seperate this.