Cisco Cisco Clean Access 3.5
6-19
Cisco Clean Access Manager Installation and Administration Guide
OL-7044-01
Chapter 6 User Management: Auth Servers
Map Users to Roles Using Attributes or VLAN IDs
Configure Mapping Rule
1.
Go to User Management > Auth Servers > Mapping Rules and click the Add Mapping Rule link
for the authentication server, or
for the authentication server, or
Click the Mapping button (
) for the auth server under User Management > Auth Servers > List
of Servers, then click the Add Mapping Rule link for the auth server.
Figure 6-13
List of Auth Servers
2.
The Add Mapping Rule form appears.
Figure 6-14
Example Add Mapping Rule (Cisco VPN Server)
Configure Conditions for Mapping Rule (A)
•
Provider Name— The Provider Name sets the fields of the Mapping Rules form for that
authentication server type. For example, the form only allows VLAN ID mapping rule configuration
for Kerberos, Windows NT, Transparent Windows/802.1x, and S/Ident auth server types. The form
allows VLAN ID or Attribute mapping rule configuration for RADIUS, LDAP, and Cisco VPN
Server auth types.
authentication server type. For example, the form only allows VLAN ID mapping rule configuration
for Kerberos, Windows NT, Transparent Windows/802.1x, and S/Ident auth server types. The form
allows VLAN ID or Attribute mapping rule configuration for RADIUS, LDAP, and Cisco VPN
Server auth types.
•
Condition Type— Configure and add conditions first before adding the mapping rule. Choose one
of the following from the dropdown menu to set the fields of the Condition form:
of the following from the dropdown menu to set the fields of the Condition form:
–
Attribute—For LDAP, RADIUS, Cisco VPN Server auth providers only.
A
B