Manualshelf

User Guide

ManualsBrandsAlcatel-Lucent ManualsOtherOMNIACCESS SAFEGUARD CONTROLLER
271272273274275276277278279280
OmniAccess SafeGuard OS Administration Guide
279
Chapter 6: Configuring Authentication and Role Derivation
Configuring Rule Maps
To creating a rule map, follow the steps described in the following sections:
1 Assigning a Name
2 Adding a Description
3 Specifying Logical Operators (Optional)
4 Configuring the Rule Map Attributes
5 Setting the Role
6 Continuing or Stopping Assigning Roles
7 Applying the Rule Map and Assign a Precedence
Assigning a Name
The name of a rule map is a text string to identify the rule map; the name has no bearing
on the role being assigned. It must be unique within the system. To assign a name to a
rule map, enter rule map submode by using the aaa rule-map command in Global
Configuration mode:
aaa rule-map rulemap_name
The following example creates a rule map called “sales”:
(SafeGuardOS) #configure terminal
(SafeGuardOS) (config) # aaa rule-map sales
(SafeGuardOS) (rulemap) #
To remove a rule map, use the no version of this command.
Adding a Description
This optional step allows you to define a string that describes the entry. Specify the
description in double quotation marks. In rule map submode, use the description
statement using the following syntax:
NOTE: The syntax for creating a rule map is lengthy. Use the syntax described
in this section to define each user, or use the question mark (?) prompt and
allow the CLI to guide the process. By using the prompted method, only the
keyword choices that are applicable at that point in the process are shown. For
ease, the prompted method of entry is recommended.
Syntax Description rulemap_name The name of the rule map being created.