Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
472
Views
0
Helpful
1
Replies

Moving users to a role other than unauthenticated

Go to solution
Robert Slusar
Level 1
Level 1

‎06-17-2010 06:23 AM - edited ‎03-09-2019 11:01 PM

We are deploying a OOB VGW NAC solution (4.7.2) and I have SSO working with the Unauthenticateed Role.

When I look at the online users all of them are:

WindowsADServerUnauthenticated Role

But function as I would hope.

I also have an employee role that we created as well as a consultant role.

How do I associated a user to a role? (Other than unauthenticated.)

Also

The access rule that I use for the employee role and consultant role are identical.

The only real difference is that employee devices have a narrower range of certification possibilities - That is a specific AV and registry entry that identifies it as a "corporate asset". The consultant devices can use a much broader set of AV's and such.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Faisal Sehbai
Level 7
Level 7

‎06-17-2010 06:38 AM

Rob,

An auth provider can match to one role only. The caveat is that if you use the Mapping Rules and using the LDAP attributes, you can map then to different roles then.

More details on the LDAP mapping here: http://tinyurl.com/2ex5uol

HTH,

Faisal

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Faisal Sehbai
Level 7
Level 7

‎06-17-2010 06:38 AM

Rob,

An auth provider can match to one role only. The caveat is that if you use the Mapping Rules and using the LDAP attributes, you can map then to different roles then.

More details on the LDAP mapping here: http://tinyurl.com/2ex5uol

HTH,

Faisal

0 Helpful
Customers Also Viewed These Support Documents