I use a RADIUS proxy (DUO) which handles 2FA for Remote Access authentication in locally managed SMB appliances.
The user database is active directory. Duo can use either LDAP or RADIUS to connect to the AD.
Is it possible to use the RADIUS groups to assign permissions?
I took a look at the procedure described in Using RADIUS Groups (RAD_<Group>) to Assign Permissions, but some steps are not really compatible with what we have in local management. I tried using attribute 25 or vendor specific 229 as described without success.
Is it possible? Did anyone here ever accomplish that?