Has anyone ever got the ASA's DAP to trigger on the IETF Radius Class attribute? Am i supposed to use 25 for the class attribute, or 4121 (4096+25)? do i enter the exact string i have in the class field in ACS into the value field? For example, In ACS I have in my user group A "ou=GroupPolicy1" entered into the IETF-25 Class field.
side question, can i use multiple entries in this ACS field and will DAP parse on them all? for instance, i would like to have a super user of a group have an extra class statement that gives them rights above and beyond their peers.
thanks for any help you can provide!