Re: Freeradius proxy - Fortigate - Cisco ACS

Ole Bobakke wrote: > Cool :-) > > Where you I put this script ? It's not a script. It's the internal policy language. See "man unlang" >"authorize" section, after "suffix" ? That's what I said... >if (Fortinet-Vdom-Name && (User-Name !~ /@%{Fortinet-Vdom-Name/)) { It's ...

Re: Freeradius proxy - Fortigate - Cisco ACS

Cool :-) Where you I put this script ? "authorize" section, after "suffix" ? if (Fortinet-Vdom-Name && (User-Name !~ /@%{Fortinet-Vdom-Name/)) { reject } I got perl to run with freeradius, and enabled this modules, do I need to put this in perl script?

Re: Freeradius proxy - Fortigate - Cisco ACS

Ole Bobakke wrote: > Both of them use the Cisco ACS to authenticate users, so at this point > the same username can login to both SSL portals, this is no good :-( Yup. > Then I tried to add a fortigate VSA to the Cisco ACS server, so when > user p...@ompa.corp.com lo

Freeradius proxy - Fortigate - Cisco ACS

Hi. We have this setup today. Fortigate FW - running SSL vpn portal, users are authenticated towards a Cisco ACS radius server. We only use one vdom ( virtual firewall) but we have a plan to create a portal to every co companies. So I created two new vdom on the fortigate called, : ompa and tamp