It’s not currently possible to assign roles based on external authentication attributes.
I looked at doing this for LDAP a while back, but it was a bit of a pain to feed the data through the authentication system as it stands. I’m not sure how the data comes from RADIUS, so I can’t say how feasible it would be.
Adam.
From: observium <observium-bounces@observium.org> On Behalf Of Joelly, Alexander via observium
Sent: 19 November 2020 22:47
To: observium@observium.org
Cc: Joelly, Alexander <Alexander.Joelly@magna.com>
Subject: [Observium] Limit Radius user to specific devices/ports
I’m authenticating against RSA , set the groupmemberattr Filter-ID and some auth_radius_groups with different privilege levels.
What i could not figure out is how i can limit one Filter-ID to just a specific device or port.
In the GUI it’s possible to configure some Roles, once added they cannot be removed anymore via the GUI?
Thanks,
Alex