Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,461 questions
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I was wondering if it is possible to control azure p2s user access to specific subnets by matching UserID/ADgroup and then based on that controlling either routes the VPN users receives or modifying ACL/FW policies somewhere in azure? I heard maybe via xml files pushed to users based on AD groups?
Unfortunately this is not possible. If you want to restrict access to resources, your best bet is to do so with Identity controls.
This might be possible with some custom code, but I would not recommend securing access to resources by not adding routes.