search

Place1 / wg-access-server

An all-in-one WireGuard VPN solution with a web ui for connecting devices
MIT License
1.76k stars 222 forks source link

radius/NPS support #36

Open nimbo78 opened 4 years ago

nimbo78 commented 4 years ago

Since Active Directory can provide radius support through NPS role we can:

  1. Auth to web management with NPS for certain groups in NPS
  2. Add VPN peers with username provided by NPS, like 2FA - adding at web for ex. for user "j.smith", wg-access-server asks for possibility to add this user to VPN peers, and if user have such permissions - add peer with this username\comment. Also - check by cron if user doesn't have permissions to vpn then wg-access-server deletes peer from userlist.

how about such implementations? that would be usefull for companies with AD (50+ users).

Place1 commented 4 years ago

@nimbo78 thanks for raising this. I'm not well versed in radius/NPS.

Is this something you'd like to help contribute?