It would be great if a user could log on through RADIUS without first having a local account in Unimus.
The user's role (for permissions) could be applied via a RADIUS attribute returned by the RADIUS server as part of the request.
[Implemented] RADIUS Login without Local Account
I'd like to second this. While we have added this process to our onboarding/offboarding, most organizations suffer from application/systems sprawl where there are many different solutions with unique user databases that have to be maintained constantly. User logins could be evaluated using local accounts first and subsequently fall-through to a RADIUS User Group that passes the username inward without having to validate against a local database.
-
- Posts: 1
- Joined: Thu Jul 08, 2021 1:46 pm
Hi, oh yes, I support that idea. It would be great to log in directly without an account name!)
This has now been implemented. Starting with 2.5.0-Beta1, we have a new Automatic Account Creation feature, which can create a Unimus account upon first successful login using external AAA (Radius or LDAP).
Please check the 2.5.0-Beta1 notes here for more info:
viewtopic.php?f=4&t=1784
Please check the 2.5.0-Beta1 notes here for more info:
viewtopic.php?f=4&t=1784