Configuring RADIUS SSO security policy
The RADIUS SSO policy allows access for members of specific RADIUS groups.
To configure RADIUS SSO security policy
1. Go to Policy > Policy > Policy.
2. Select Create New.
3. Enter the following information.
Policy Type | Firewall |
Policy Subtype | User Identity |
Incoming Interface | Internal |
Source Address | internal_network |
Outgoing Interface | wan1 |
Enable NAT | Selected |
4. In Configure Authentication Rules, select Create New and enter:
Destination Address | all |
Group(s) | Select the user groups you created for RSSO. |
User(s) | not used |
Schedule | business_hours |
Service | ALL |
Action | ACCEPT |
UTM Security Profiles | Enable AntiVirus, WebFilter, IPS, and Email Filter. In each case, select the default profile. |
5. Select OK.
6. Repeat steps
4 and
5 for each user group that is allowed to use this security policy. Schedule, Service, and UTM profiles can be different for each group.
7. Select OK.
To ensure an RSSO-related policy is matched first, the policy should be placed higher in the security policy list than more general policies for the same interfaces.