rolf
Nov 29, 2010Cirrus
RADIUS Authorization / bash console?
Hi,
We're using RADIUS for Authorization. For Administrators, we provide the following Attributes to the LTM:
F5-LTM-User-Role Administrator
F5-LTM-User-Info-1 rw
F5-LTM-User-Partition Common
F5-LTM-User-Shell bpsh
Remote Role Configuration on LTM:
remoterole {
role info xy-admin {
attribute "F5-LTM-User-Info-1=rw"
console "%F5-LTM-User-Shell"
line order 2
role "%F5-LTM-User-Role"
user partition "%F5-LTM-User-Partition"
}
}
With this configuration everything works fine, but we're not able to set the console to bash. We tried the following:
'bash'
'/bin/bash'
Is there a way to set the console attribute to a custom shell exept tmsh/bpsh?
(We're aware, that using '!/bin/bash' within bpsh starts a bash with superuser rights, but we prefer a direct shell configuration with the console attribute).
Any Ideas?
Thanks, Rolf