Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Role Mapping Rule on Secondary Server

mh808
Frequent Visitor
‎10-03-2019 11:41:AM
‎10-03-2019 11:41:AM

Role Mapping Rule on Secondary Server

Hello, we are currently using the DUO MFA RADIUS server for our primary authentication method for a particular user realm. An Active Directory server is configured as the secondary authentication method. Is there any way to configure Role Mapping such that we can query the user group from the secondary authentication method (AD) in our role mapping rule? We would like to avoid individually adding users using a "Rule based on: Username" rule.

 

It seems that the Group Membership option to create a rule only works when AD is the primary authentication method. Any way to get this done by perhaps a user attribute when our AD server is secondary? The secondary authentication method is configured specifically as an AD server, not LDAP

0 Kudos
1 REPLY 1
rdumitrescu
Contributor
‎10-03-2019 12:40:PM
‎10-03-2019 12:40:PM

Re: Role Mapping Rule on Secondary Server

Well... the group membership  role map is done accordly to the "User Directory/Attribute" server. By default if you select as primary authentication server an AD server "User Directory/Attribute" is set as "same as above".

Since you are using as primary authentication DUO you need to add to your configuration a LDAP server and set it as "User Directory/Attribute" server

© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.