Configuring Local and Remote System Administrators
Quantum Spark 1500, 1600 and 1800 Appliance Series R80.20.40 Locally Managed Administration Guide | 109
Administrator Role Value
Super Admin
adminRole
Read only
monitorrole
Networking Admin
networkingrole
Mobile Admin
mobilerole
Configuring an OpenRADIUS server for non-local appliance users
1. Create the dictionary file dict.checkpoint in the /etc/openradius/subdicts/ directory
on the RADIUS server:
# Check PointGaia vendor specific attributes
# (Formatted for the OpenRADIUS RADIUS server.)
# Add this file to etc/openradius/subdicts/ and add the line
# "$include subdicts/dict.checkpoint" to
/etc/openradius/dictionaries
# right after dict.ascend.
$add vendor 2620 CheckPoint
$set default vendor=CheckPoint
space=RAD-VSA-STD
len_ofs=1 len_size=1 len_adj=0
val_ofs=2 val_size=-2 val_type=String
nodec=0 noenc=0
$add attribute 229 CP-Gaia-User-Role
$add attribute 230 CP-Gaia-SuperUser-Access val_type=Integer
val_size=4
2. Add this line in the /etc/openradius/dictionaries file immediately after dict.ascend:
$include subdicts/dict.checkpoint
3. Add this Check Point Vendor-Specific Attribute to users in your RADIUS server user configuration
file:
CP-Gaia-User-Role = <role>
Where
<role>
is the name of the administrator role that is defined in the WebUI.
Administrator Role Value
Super Admin
adminRole
Read only
monitorrole
Networking Admin
networkingrole
Mobile Admin
mobilerole
To Next Page
Loading...
