Configuring Local and Remote System Administrators
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|152
Configuring an OpenRADIUS server for non-local appliance users
1. Create the dictionary file dict.checkpoint in the
/etc/openradius/subdicts/ directory on the RADIUS server:
# Check Point Gaia vendor specific attributes
# (Formatted for the OpenRADIUS RADIUS server.)
# Add this file to etc/openradius/subdicts/ and add the line
# "$include subdicts/dict.checkpoint" to
/etc/openradius/dictionaries
# right after dict.ascend.
$add vendor 2620 CheckPoint
$set default vendor=CheckPoint
space=RAD-VSA-STD
len_ofs=1 len_size=1 len_adj=0
val_ofs=2 val_size=-2 val_type=String
nodec=0 noenc=0
$add attribute 229 CP-Gaia-User-Role
$add attribute 230 CP-Gaia-SuperUser-Access val_type=Integer
val_size=4
2. Add this line in the /etc/openradius/dictionaries file immediately after
dict.ascend:
$include subdicts/dict.checkpoint
3. Add this Check Point Vendor-Specific Attribute to users in your RADIUS server user
configuration file:
CP-Gaia-User-Role = <role>
Where
<role>
is the name of the administrator role that is defined in the WebUI.
Administrator Role Value
Super Admin
adminRole
Read only
monitorrole
Networking Admin
networkingrole
Mobile Admin
mobilerole
To Next Page
Loading...
