Hello cjoseph,
I created an enforcement profile "limit max 1 session" with the attributes:
Type Name Value
- Session-Check Active-Session-Count = 1
- Post-Auth-Check Action = Disconnect
I added this profile to an enforcement policy rule action. The policy conditions is:
Type Name Operator Value
- Tips Role EQUALS My role name
And with this are 2 enforcement profiles:
[RADIUS] Profile_My-Profile
[Post Authentication] Limit max 1 session
In the radius profile there is a check for the Aruba-User-Role.
I also added the the Blacklist User Repository to the authentication sources at the Service that contains the above enforcement policy (as suggested in the user guide), but it doesn't seem to work, i did try to connect, disconnect and reconnect with 2 mobile devices and the AD user, but i can connect all the time when i enter the correct logon information.
Is there something i forget?
Kind regards,
Roland