Configuring Role Mapping Rules (Nsm Procedure); In The Nsm Navigation Tree, Select Device Manager > Devices; Click The Device Tree Tab, And Then Double-Click The Infranet Controller Device For - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual

NSM Infranet Controller Configuration Guide

Configuring Role Mapping Rules (NSM Procedure)

90
Configuring Infranet Controller RADIUS Request Attribute Restrictions for User Realms
(NSM Procedure) on page 69
You create a role mapping rule on the Role Mapping tab of an authentication realm. (For
administrators, to create role mapping rules, select Administrators > Admin Realms >
Realm> Role Mapping . For users, select Users > User Realms > Realm> Role Mapping.)
When you click New Rule on the Role Mapping tab, the Role Mapping Rule page appears
with an inline editor for defining the rule.
To specify role mapping rules for an authentication realm:
In the NSM navigation tree, select Device Manager > Devices.
1.

Click the Device Tree tab, and then double-click the Infranet Controller device for

2.
which you want to configure role mapping rules.
Click the Configuration tab. In the configuration tree, select Administrators > Admin
3.
Realms or Users > User Realms.
Add or modify settings on the Role Mapping Rules tab as specified in Table 26 on
4.
page 90.
Click one:
5.
OK—Saves the changes.
Cancel—Cancels the modifications.
Table 26: Role Mapping Rules Configuration Details
Option Function
Name Specifies the rule
name.
Assign these Specifies the list of
roles if the rule eligible roles that
matches matches the rule.
Stop processing Stops evaluating role
rules when this mapping rules if the
rule matches user meets the
conditions specified for
this rule.
Your Action
Enter the name.
Select the role from the Non-members list, and click
Add to move them to the members list.
Select this option to stop evaluating role mapping
rules when specific conditions are met.
Copyright © 2010, Juniper Networks, Inc.