Hi everybody,
I use a RADIUS backend user group "Remote Users" to authenticate my SSL VPN users with Aladdin Tokens. So far so good, my RADIUS has a network policy granting access to all users of an AD group "remoteUsers". So all users in the AD group remoteUsers can log in with the Token and their PIN.
The problem is now that I want to use AD groups to further differentiate the network filter rules for each user. It looks like that's not possible, because a RADIUS authenticated user at ASG is bound to my "Remote Users" backend group and I can either authenticate via AD or RADIUS. Am I right?
So the only way to solve this is to set up some local Astaro groups containing the RADIUS users.
Can anyone confirm this? I would really like to manage different access groups on AD level, but it wasn't be a bummer if that would not be possible.
Thanks in advance
Alex
I use a RADIUS backend user group "Remote Users" to authenticate my SSL VPN users with Aladdin Tokens. So far so good, my RADIUS has a network policy granting access to all users of an AD group "remoteUsers". So all users in the AD group remoteUsers can log in with the Token and their PIN.
The problem is now that I want to use AD groups to further differentiate the network filter rules for each user. It looks like that's not possible, because a RADIUS authenticated user at ASG is bound to my "Remote Users" backend group and I can either authenticate via AD or RADIUS. Am I right?
So the only way to solve this is to set up some local Astaro groups containing the RADIUS users.
Can anyone confirm this? I would really like to manage different access groups on AD level, but it wasn't be a bummer if that would not be possible.
Thanks in advance
Alex