Yubico Forum

We've managed to get YubiRadius working as a 2FA authentication for a Juniper MAG-2600 running the Juniper Pulse Secure Access Service - the setup itself was fairly straight-forward and the documentation was of good assistance if we hit a snag. However, we are now facing a problem in the authorization of users. The idea was to use security groups in AD for determining user realms on the VPN device to determine which resources a specific user should be allowed to access. We therefore set up the YubiRadius config to return group information in the RADIUS response. However, we only seem to get one (the first?) group in the response, even with the Return All Groups setting enabled. Is the number of/order of groups returned in the response dependent on the filter configured under the Users Import tab, or is there anything else we need to set?

Hi, I am also interested to solve this puzzle. can anyone help ?

Hello,

If you configure the filter for the users to import will get the users and groups according to the filter applied and in the final response returns the groups which has got imported along with the users.

Thanks and best regards,
Samir.