Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1212
Views
0
Helpful
2
Replies

ISE authorization policy matching internal user identity group.

StuartR
Level 1
Level 1

‎08-03-2015 07:42 PM - edited ‎03-10-2019 10:57 PM

Hi,

 

I'm trying to find out how to match a internal user identity group in an authorization policy in ISE 1.4. I've tried various options with no luck.

 

Thanks

 

Stuart

Labels:
0 Helpful
2 Replies 2

Seb Rupik
VIP Alumni
VIP Alumni

‎08-04-2015 02:39 AM

Hi Stuart,

How far have you got?

 

When creating a policy you can define a condition using 'InternalUser:IdentityGroup equals <internal_group_name>' . (see attached image)

You will have to manaualy type the <internal_group_name>. This will be defined under:

Administration -> Identity Management -> Groups

 

cheers,

Seb.

Preview file
78 KB
0 Helpful

jan.nielsen
Level 7
Level 7

‎08-04-2015 02:41 AM

Same as any version of ISE really, you just select the group you wan't to match, by pressing the + sign right next to the "if" in the rule.

 

Preview file
27 KB
0 Helpful
Customers Also Viewed These Support Documents