Yeah we've been able to make it work. We added two dictionary attributes for Pica8 vendor, one for the ACL name and the other for detailed ACL rules, and thats what the switch expects and sent with access-accept. Tests show that everything works as expected.
I noticed couple of small issues though,
WARN Core.RadiusEnfProfileHelper - getSessionTimeoutInSecs: SessionTimeout attribute missing in output
It seems that I haven't set the SessionTimeout attribute on the server for this particular session and I dont know how and where to set this attribute. Maybe in the enforcement profile?
And two more log entries:
ERROR Core.PETaskEnforcement - classifyProfiles: Profile Id not an integer. Id=undefined
WARN Util.DatatypeUtils - Converting string undefined to UInt32 failed
Can you please point me in the right direction.
Thanks again.