Jump to content

How to exclude MFA (secondary authentication with RADIUS) when connecting from the LAN using nFactor policies

Gunther Imbrechts

Recommended Posts


I'm running on Netscaler VPX version 13.1 49.15 and I would like to seperate traffic coming from the LAN and coming from outside the LAN.

On the LAN: no MFA with RADIUS required

Outside the LAN: MFA with RADIUS required.

Currently, I have two vServers and on one of the two I have configured a listen policy expression CLIENT.IP.SRC.IN_SUBNET(xxx.xxx.0.0/16) on one of them to achieve my goal.

But I think there's a more efficient way to do this with the advanced policies on nFactor.

My advanced policy is already in place but I don't know exactly how I should define the expression.

Many thanks

Link to comment
Share on other sites

  • 2 weeks later...
  • 3 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...