Radius configuration shell privileges

ItzikK — Mon, 01 Jan 2024 13:14:27 GMT

Hi all,

I`m trying to configure different ssh privileges in my R81 environment using Radius.

My purpose is to allow expert mode to a specific group and connect them directly into, while others have permission only for clish.

I only managed to configure all of the groups to login the same shell mode: Expert or Clish (and not separate by permissions)

the situation now is that I configured all for clish mode, and the group with expert permissions can move into expert mode by using local expert password, which i`m trying to bypass - or by login them directly into expert (which means for all other groups as well), or to somehow configure expert mode to authenticate using radius.

Gaia Configuration now: RADIUS Users Default Shell: /etc/cli.sh

Super User UID: 0

Any ideas of how to achieve this?

Thanks

Re: Radius configuration shell privileges

PhoneBoy — Tue, 02 Jan 2024 22:54:37 GMT

Unfortunately, all RADIUS users end up resolving to the same local user with the same shell.
I don't believe it's possible to change this.

topic Re: Radius configuration shell privileges in Firewall and Security Management

Radius configuration shell privileges

Re: Radius configuration shell privileges