Page 1 of 1

Credential of device to come from credential of logged in user

Posted: Fri Jun 14, 2019 8:46 pm
by alex_rhys-hurn
Hello,

I would like the possibility of adding a credential type which will match the credential of the logged in Unimus user.

E.g. We use Mikrotik gear. I have users in Routeros configured in a central LDAP server. I would like it that a device could be configured to use the logged in unimus users credentials to connect to the router, and that all commands run there, are run by that user.

This way I would be able to audit and track actions taken both in Unimus and in the Router by person, and the device could also refuse to carry out certain commands if the user doesnt have the rights.

Obviously then the next step would be nice if Unimus could also authenticate my users against the same LDAP user, giving me a central point of user managment (this feature was requested earlier).

Thanks,

Alex

Re: Credential of device to come from credential of logged in user

Posted: Fri Jun 14, 2019 9:03 pm
by Tomas
Hi,
I would like the possibility of adding a credential type which will match the credential of the logged in Unimus user.
Unimus can perform jobs on devices on schedules, when no user is logged in.
This creates issues for hopefully obvious reasons.

We also have plans to make Mass Config Push schedulable, so even in Push this is not really feasible.
Obviously then the next step would be nice if Unimus could also authenticate my users against the same LDAP user, giving me a central point of user managment (this feature was requested earlier).
LDAP support for logging into Unimus is planned.
Currently, you can use NPS until LDAP is supported directly.