Roles and policies: combine multiple roles
When you define roles based on group attributes (AD security group membership), we notice that you can't be a member of more than one group. Our teachers are members of the sec. group "teachers" and get the right role when they connect. But certain teachers are also member of the sec. group "wifi_operators" (to give them extra rights, like guest pass generation: therefore we made an extra role). When they connect, they only get the rights based on their membership of the group "teachers", they don't get the second role, based on their membership of wifi_operators.
Is this a bug, or is it by design? Do you have a solution for that problem?