Hello PacketFence Community, I am currently setting up *PacketFence v15* and integrating both *Google Workspace (GWS)* and *Microsoft Entra ID* via *SAML*.
*The Challenge:* I need to assign VLANs (Roles) based on group memberships (the memberOf attribute from Google and the groups Object ID claim from Entra ID). However, when I create an *Internal Authorization Source* to handle the logic, the *Authentication Rules* dropdown does not list any SAML-related attributes. *Details:* - *Attributes Visible:* I only see standard RADIUS fields (SSID, Username, MAC Address) and several certificate fields (e.g., radius_request.TLS-Client-Cert-Common-Name). - *Attributes Missing:* There are no options for SAML-Attribute-groups, memberOf, or any generic "Any Attribute" field that allows manual typing. - *Goal:* Use the Entra ID Group Object ID to assign the "Staff" or "Student" role. *Question:* In version 15, what is the recommended *GUI-only* method to authorize a user based on a SAML attribute if that attribute is not present in the rules dropdown? Is there a specific way to "register" these attributes so they become visible in the Rule Condition list? Thank you for your support. Thirunavukkarasu -- _---------------------------------------------------------------------------------_ *_TANUVAS_* *The contents of this message are confidential and are not be shared with outside parties without prior permission*
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
