In this policy, you can define rules using regular expressions to accomplish the following actions:
Select an appropriate chain for authenticating users to the RADIUS client
Authenticate users to a specific event when multiple RADIUS events are available
Display associated user groups in the authentication response after a successful authentication to the RADIUS client
Select a particular chain based on the information that the user specifies on the RADIUS client
For example, if a user specifies username&chain-short-name (bob&OTP), then select the chain with the LDAP and SMS OTP methods. In case, the user specifies only the username (bob) then select the chain with LDAP and Smartphone methods.
NOTE:The chain short name is defined using the regular expressions in either Chain Selection or Event Selection rule.
Define a specific authentication chain for a RADIUS client when there are multiple RADIUS clients mapped to the same RADIUS event
You can define the following rules in this policy:
To understand how to configure RADIUS options policy with rules, use the following sample scenarios: