Technology Solutions has developed a web application for designated administrators of unit network space to manage the end-users that are authorized to access the respective unit's network.
While the previous OpenVPN/Viscosity solution would place users directly into a VLAN, the AnyConnect solution uses the same address range for everyone regardless of what unit they are in.
However, this does not mean that any VPN user can get to the unit's network. When someone authenticates to the AnyConnect VPN server, a process checks Active Directory group memberships (displayed and managed via this Group Administration tool) to associate individuals a unit's network, and dynamically creates an Access Control List (ACL) to allow that individual to route to respective network. If someone is not in a unit's group, they are not allowed to send traffic to that unit's network.