Hi
I want different Xauth Profile for user groups like group1 users should get IP from different pool and group2 users from different Pool. So I can put different security policies on the SRX for different Pool. What I understood we can make different Xauth Profile and bind it to their respective IPSEC tunnel But in the Dynamic VPN configuration we can specifiy only one Access Profile?
How can I meet my requirement? If I make only one access profile with xauth then in the dynamic VPN condiguration I can restric the users to protected resources (as per users) BUT user can put manual routes on their PC and since for access profile, on SRX the IPSEC policy would be any any so users can access any thing by putting the manual routes on their machine.
Thanks