Hello Fabrice, Thanks for the quick response,
The link that you shared for admin rights is I believe for users who will be accessing and controlling packetfence system via GUI. What we are looking is lets say we want to create two accounts (e.g admin1 & user1) on PF/radius to access switches. Account admin1 will have full privileges on switch including going to "config terminal" and making changes to the ports/VLAN etc while account user1 will have limited privileges and can just have a look at the system configuration or should not be able to enter "config terminal" mode. My question/problem in previous mail was that we have created account admin PF/radius and we are able to login to our Cisco switch with that account but once we are logged and run "enable" it asks for the password and here password of user admin does not work here and we need to enter password of local user jit here to get into the "enable" mode. Please let me know if you need more details on this. Regards, Jitendra Gondaliya Information Technology Security Co LLC Mob : +968 94583036 From: Durand fabrice via PacketFence-users <packetfence-users@lists.sourceforge.net> Sent: Wednesday, July 29, 2020 6:20 AM To: packetfence-users@lists.sourceforge.net Cc: Durand fabrice <fdur...@inverse.ca> Subject: Re: [PacketFence-users] Role based access control Hello Jitendra, Le 20-07-28 à 10 h 31, Jitendra Gondaliya via PacketFence-users a écrit : Hi Team, We have installed and configured packetfence and added one Cisco switch and we are able to authenticate with packetfence but enable password is not working, for enable we need to use local users password. it miss a little bit of context. Also does packetfence support role based access control like few users will have limited privileges on selected device wherein some users will have full privileges on all devices. you probably mean that https://mgmt_ip:1443/admin/alt#/configuration/admin_roles Btw there is no limited access to a list of devices but a limited access to administration sections. Regards Fabrice Regards, Jitendra Gondaliya _______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net<mailto:PacketFence-users@lists.sourceforge.net> https://lists.sourceforge.net/lists/listinfo/packetfence-users
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
