This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies. For details on cookie usage on our site, read our Privacy Policy
Mike: indeed. 🙂 Anyway, I am going to test both ways next week (RADIUS User group and LDAP). Assuming that MS IAS 2003 knows to deal with that PaloAlto-User-Group VSA....
... View more
I am not going to use PAN agent (for this network segment), but rather HTTP Captive Portal with RADIUS. My problem is that the only method that worked so far was defining "known user" in security rule and specific AD user group in RADIUS policy that is not what I need (actually I need in a contrary). Sincerely, Evgeny
... View more
I would like to use my AD groups in Security rules (along with RADIUS and HTML Captive Portal). So far I managed to use "known users" only, seems due to a lack of Group attribute exchange between PAN and RADIUS (MS IAS 2003). I found the promising "Retrieve User Group" chekbox in RADIUS authentication profile settings but so far didn't find any reference to it in the Knowledgepoint. Can anyone point me to a relevant docs, or to share a personal experience? Sincerely, Evgeny
... View more