I switched from GSuite Auth to LDAP for almost exactly this reason.. using
LDAP groups makes it very easy. I didn't find a way of making it work with
GSuite, but someone else here may have been more adventurous or creative!
It "should" be technically possible with enough hacking, as the federated
Auth method for making Amazon AWS console work with GSuite entails setting
some user attributes on the Google side which AWS maps to a role...
On 7 Feb 2018 23:05, "Timothy Mullican via PacketFence-users" <
[email protected]> wrote:
> All,
>
> I am trying to implement PacketFence on my network. I have added G Suite
> and SAML as an authentication method and that works. The problem I have is
> that we have several departments that operate on different VLANs. Is it
> possible to use certain attributes from a SAML source to determine the
> user's role (VLAN)? I can return a SAML attribute containing the user's
> group, but I don't think PacketFence supports using this out of the box to
> determine their role. Then I could manually map the returned group to a
> role in PacketFence. If not, how do you assign roles for users? Active
> Directory groups?
>
> Currently we have several SSIDs that are each mapped to specific VLANs.
> Then the user connects to a a specific SSID to get on a specific VLAN.
> Greatly appreciate any feedback.
>
> Thank you,
> Tim
>
> ------------------------------------------------------------
> ------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> PacketFence-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
