RFE: Allow users categorized as 'Enterprise' (SAML, RADIUS, TACACS+) can be created through the UI/API

ansible / awx

AWX provides a web-based user interface, REST API, and task engine built on top of Ansible. It is one of the upstream projects for Red Hat Ansible Automation Platform.

Other

14.12k stars 3.44k forks source link

RFE: Allow users categorized as 'Enterprise' (SAML, RADIUS, TACACS+) can be created through the UI/API #2087

Open cesarfn4 opened 6 years ago

cesarfn4 commented 6 years ago

ISSUE TYPE

Feature Idea

COMPONENT NAME

SUMMARY

Ability to create users categorized as 'Enterprise' (SAML, RADIUS, TACACS+) through the UI/API.

ENVIRONMENT

AWX version: latest

matburt commented 6 years ago

Usually these users are created on login by checking the external system... how would you see this working if you create them directly from the api/ui without being able to associate and verify their credentials remotely first?

wenottingham commented 6 years ago

The idea is that they'd be created so that you could assign permissions (and teams, in the case of radius/tacacs+ that do not have team mappings) to them, but the accounts wouldn't do anything until the user logs in.

0xceb1d commented 6 years ago

Would this allow for organisation mapping? Ideally priv_lvl could be supported from the TACACS+ response

sumkincpp commented 5 years ago

:+1: for this, would be great to assign existing default Teams for RADIUS/TACACS+ authentication

shanemcd commented 1 year ago

We should investigate if it's possible to add mapping support to RADIUS/TACACS+