Create a Post
Showing results for 
Search instead for 
Did you mean: 

Unified Policy / Access Roles / IPASSIGNMENT.CONF

Hi mates,

I’m starting with R80.10 and Unified Policy and, for remote access I need to authenticate my users on Active Directory and assign the IP using ipassignment.conf (like I did it on R77.30). On R77.30 I was using LDAP Groups on the Rulebase and in the ipassignment.conf. On R80.10 I have to use “Access Roles” on the rulebase because of the Unified Policy how can I use ipassignment.conf in this scenario.

I tried to put Access Role name on the ipassignment and didn’t work, I also create an LDAP Group and add it to the Access Role and the authentication worked fine but the LDAP Group on the ipassignment didn’t.

Any ideas?




2 Replies

So, one answer is:

  • Rulebase - Access Role - Drill Down the AD and search for your group;
  • IPASSIGNMENT.CONF - Create a LDAP GROUP with the same group and use the name on the ipassignment.

Yes, I had to refer twice the same group.

Maybe I'm going to quit ipassignment and start using RADIUS instead.

0 Kudos

Hi Ivo,

This option I have used for Remote users authentication with AD. 

As you are going to use RADIUS, how you will map the IP address.