Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual page 109

Configuring infranet controllers guide

Hide thumbs Also See for NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01:

Manual (444 pages)

Administration manual (1026 pages)

Installation manual (244 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

Table of Contents

Documentation

Table 26: Role Mapping Rules Configuration Details (continued)

Option

Function

Role mapping

Specifies the

rule type

parameters based on

which the role mapping

is created.

is/is not

Specifies the

conditional expression

used in the rule.

User must select

Specifies that the rule

from among

is based on assigned

assigned roles

roles.

User must select

Specifies that the rule

the sets of

is based on sets of

merged roles

merged roles.

assigned by each

rule

Creating an Authentication Realm (NSM Procedure) on page 87

Chapter 9: Configuring Authentication Realms

Your Action

Select If user name if the role mapping

parameter must be based on the user name.

Select is/is not conditional expressions for the

rule, click the Add button, and enter the new user

names.

Select If certificate has any of the attributes if

the role mapping parameter must be based on

the certificate attributes. Select is/is not

conditional expressions for the rule, click the Add

button, and enter the new values.

Select If user has any of these custom

expressions if the role mapping parameter must

be based on the custom expressions. The

collection-of-expressions button appears.

Click the collection-of-expressions button

to assign expressions. The expressions that

were created for the selected authentication

server appears.

2. Select an existing expression from the

Non-members area and click Add to assign

the expression to the role-mapping rule.

3. Click New (+) and create an expression to

assign a new expression to the role-mapping

rule. For information on creating custom

expressions and using the Expression

Dictionary, refer to "Creating a Custom

Expression for an Authentication Server (NSM

Procedure)."

NOTE: You can create a custom expression in a

device template, but you cannot validate the

custom expression. The Validate button is not

enabled in the Custom Expressions editor for device

templates.

Select this option to specify conditional expression.

Select this option to specify that the rule is based

on assigned roles.

Select this option to specify that the rule is based

on sets of merged roles.

Table of Contents

Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual page 109

Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Table of Contents