Since Active Directory can provide radius support through NPS role we can:
Auth to web management with NPS for certain groups in NPS
Add VPN peers with username provided by NPS, like 2FA - adding at web for ex. for user "j.smith", wg-access-server asks for possibility to add this user to VPN peers, and if user have such permissions - add peer with this username\comment. Also - check by cron if user doesn't have permissions to vpn then wg-access-server deletes peer from userlist.
how about such implementations? that would be usefull for companies with AD (50+ users).
Since Active Directory can provide radius support through NPS role we can:
how about such implementations? that would be usefull for companies with AD (50+ users).