[RADIATOR] Multiple user groups for tacacs authorization possible

Alexander Hartmaier alexander.hartmaier at t-systems.at
Thu Jul 7 05:26:04 CDT 2011


Hi,
we have the need to map users with membership in multiple groups into
tacacs groups to decide if the user is allowed to login (authentication)
and what the user is allowed to do (authorization).
We solved the authentication by multiple authby ldap2's  for the
different ldap groups in an authby group.
The first matched group populates the OSC-Group-Identifier attribute
which is used for the GroupMemberAttr.
Because some users are in multiple groups we're looking for a way to add
all of them to the GroupMemberAttr, is this possible?

--
Cheers, Alex

*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
T-Systems Austria GesmbH   Rennweg 97-99, 1030 Wien
Handelsgericht Wien, FN 79340b
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
Notice: This e-mail contains information that is confidential and may be privileged.
If you are not the intended recipient, please notify the sender and then
delete this e-mail immediately.
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*


More information about the radiator mailing list