BIG-IP authentication for admin users. Remote Role Groups for TACACs and RADIUS

Question

Hello Devs!&nbsp;
How's everybody doing?!&nbsp;
I'm trying to wrap my head around remote role groups. Authenticating any BIG-IP against AD/TACACs/RADIUS/LDAP is pretty easy. You point to correct server and voialá, you can authenticate.&nbsp;
But the thing is that giving any authenticated user role administrator seems a bit risky.&nbsp;
I know there is the feature for "Remote Role Groups". I tested it with AD and it was very straight forward to setup so only users from a specific group had role Admin.&nbsp;
Is it possible to use "Remote Role Groups" with TACACs and RADIUS? What would be the attribute string?&nbsp;
&nbsp;
I ask this because it would be easier to thinker with remote role groups than trying to mess with tacacs/radius softwares.&nbsp;
Thanks!&nbsp;

amresh008 · Answer

F5-LTM-User-info-1=adm

Forum Discussion

BIG-IP authentication for admin users. Remote Role Groups for TACACs and RADIUS

1 Reply

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

Related Content

Re: Get Started with BIG-IP Virtual Edition (VE), BIG-IQ VE or BIG-IP Cloud Edition Trial

Re: Configuring Smart Card Authentication to the BIG-IP Traffic Management User Interface (TMUI) usi

Quick Optimizations for F5 BIG-IP Virtual Edition

Deploying F5 BIG-IP with Azure Cross-region load balancer

Getting Started with BIG-IP Next: Upgrading Central Manager