Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

UAC radius attributes in ldap filter

JeffA_
Not applicable
‎08-05-2011 10:47:AM
‎08-05-2011 10:47:AM

UAC radius attributes in ldap filter

I am wondering if variables other than <USER> and <GROUP> can be used in

search filters when configuring an ldap server.

I have a sign-in policy using a realm that is configured for 802.1x certificate

authentication. The ldap configuration is used for authorization. I want to

confirm that the mac address of the client is the same as the mac address stored

in ldap.

I know that the mac address of the client is being sent during authentication

as a Calling-Station-ID radius attribute.

I would like my filter to look something like:

__(&(objectClass=ieee802Device)(cn=<USER>)(macAddress=<Calling-Station-Id>))_

Is there a way to use the radius attributes from authentication in the ldap authorization

filter? Better yet, is the mac address available in a nice preformatted form?

0 Kudos
1 REPLY 1
Raveen_
Regular Contributor
‎08-08-2011 03:24:AM
‎08-08-2011 03:24:AM

Re: UAC radius attributes in ldap filter

Hi

You could use any radius attribute from incoming request as filter.

And the syntac you used is correct.

Regards,

Raveen

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.