AnsweredAssumed Answered

Using RADIUS Groups (RAD_<Group>) to Assign Permissions

Question asked by Heath Mote on Dec 4, 2017
Latest reply on Apr 23, 2018 by Harshpal Bhati

Remote Access VPN R80.10 (Part of Check Point Infinity) 

 

I'm using the above guide to setup RADIUS authentication with a return value that will set my created RAD_Test group like shown here:

Configuring RADIUS Settings for Users

To define a RADIUS user group:

  1. In SmartConsole, the Objects tab, click New > More > Users > User Group.

    The New User Group window opens.

  2. Enter the name of the group in this format: RAD_<group_name>.

    Make sure the group is empty.

  3. Click OK.
  4. Install policy.

 

 

My problem is that when I create this RAD_Test user group, I can't use that user group in my security policy to assign permissions to servers/networks. This part is left out of the documentation. I know in the mobile access policy that I can assign services/applications but I need to be able to restrict what the groups can access...not just the service/application they can or cannot use.

 

Any help would be appreciated.

Outcomes