Hey guys, I have a rather dumb question. I have a customer with CPPM with a big list of radius service policies that I setup for admin access to various vendors, Aruba, Palo Alto, Cisco, Checkpoint. The service rules for the policies are very basic and only consist of the source device group that I setup for each one respectivly and then each one has its own specific list of enforcement policies.
Everything works great, however we are looking to migrate radius authentication for wireless users over to this CPPM and I can't figure out how to keep the regular user authentications from hitting the admin service policy. Seems like this should be pretty simple. I normally use the Aruba-Essid-Name equals to seperate out policies for different WLANs but I can't figure out how to seperate Admins.
Thanks,