08-31-2023 07:48 AM
Hallo,
currently we match users authenticated via LDAP to Group Policies via LDAP attribute maps by Group memberships.
In future we plan to introduce 2FA/MFA via radius. How can we still get the ldap groups and match the users to group policies?
Or is it possible to do 2FA/MFA via LDAP?
LDAP/Radius is Novell eDirectory/AAF.
09-01-2023 04:53 AM
Assuming you are running ASA, you can capture radius attribute 25 to assign group policy.
Of course, the radius server should have radius attribute 25 configured to some OU.
09-04-2023 01:36 AM
Thank you for your help.
Yes we are running ASA and I read though the doc. So with radius there is no configurable mapping of the groups to the policy, so I assume, the attribute 25 has to have the same value as the policy name, right?
09-04-2023 01:40 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide