You could pass the group as a realm to the RADIUS server by having the
users log in as [EMAIL PROTECTED] The RADIUS server could authenticate them
and return a Class=OU=GROUP; attribute to map them properly.
You could also provide a group list to the user:
as user/pass,
the [EMAIL PROTECTED] might be an option, have you tried this before by
sending
back a group attribute to the ASA from RADIUS and it actually acknowledging
it and putting the WEBVPN user into that group?.
Cheers
Ben
-Original Message-
From: LaPorte, David [mailto