On 07/07/2011 01:26 PM, Alexander Hartmaier wrote:
> we have the need to map users with membership in multiple groups into
> tacacs groups to decide if the user is allowed to login (authentication)
> and what the user is allowed to do (authorization).
> We solved the authentication by multiple aut
Hi Heikki,
I did something similar to this at NBNCo (you have the configs I think).
In that one we used the LDAP to get the groups the users is a member of, and
used the device group the request cam from to to do a lookup in SQL, From
there we get AuthorizeGroupAttr rules.
Cheers.
On Friday 08
