Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Auto login with link

    webGUI
    3
    7
    2.7k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      marcvb
      last edited by

      Hello,

      Al of our pfsense we manage with a single dashboard but we want to create a link for each firewall containing the username and password.
      Is there a way to pass the username and password to the firewall within the url to auto login without having to type the password ?

      1 Reply Last reply Reply Quote 0
      • NogBadTheBadN
        NogBadTheBad
        last edited by

        Buy something like 1Password to auto fill usernames & passwords.

        Can't see it happening any other way as it's insecure having usernames & passwords in clear text.

        Andy

        1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator
          last edited by

          I use lastpass.. it has a team sharing feature for passwords, etc.  So if you have multiple users..

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.7.2, 24.11

          1 Reply Last reply Reply Quote 0
          • M
            marcvb
            last edited by

            Thank you for the reply's,

            We use a password management software for this without a browser plugin.
            The best thing will be that the administators do not know the admin/root password.
            Is it maybe possible to create a user over ssh for the webgui?

            Then i can create a script to create and deactivate users.
            So when a employee leaves the company we can remove his account on all the firewalls.
            The admin/root password will only be known to the owner or high privleged system managers.
            We have over 80+ firewalls, thats why we are putting so much effort in central management.
            These firewalls are on diffrent locations, with diffrent internet providers.

            1 Reply Last reply Reply Quote 0
            • NogBadTheBadN
              NogBadTheBad
              last edited by

              @marcvb:

              So when a employee leaves the company we can remove his account on all the firewalls.
              The admin/root password will only be known to the owner or high privleged system managers.
              We have over 80+ firewalls, thats why we are putting so much effort in central management.
              These firewalls are on diffrent locations, with diffrent internet providers.

              FreeRadius will do this, get it to use FreeRadius first for the auth then fall back to local usernames & passwords.

              Never done it myself with my pfSense access but my local Linksys switches are using the radius server on my router.

              This is how I'd do it if I had to.

              You'd just need to add the routers to the client list and the users to the user list on the central server.

              You can even set auto expire dates for the users.

              Don't lock your self out like I did wiith a test VM :)

              No page assigned to user, so it is using radius

              Andy

              1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

              1 Reply Last reply Reply Quote 0
              • M
                marcvb
                last edited by

                @NogBadTheBad:

                @marcvb:

                So when a employee leaves the company we can remove his account on all the firewalls.
                The admin/root password will only be known to the owner or high privleged system managers.
                We have over 80+ firewalls, thats why we are putting so much effort in central management.
                These firewalls are on diffrent locations, with diffrent internet providers.

                FreeRadius will do this, get it to use FreeRadius first for the auth then fall back to local usernames & passwords.

                Never done it myself with my pfSense access but my local Linksys switches are using the radius server on my router.

                This is how I'd do it if I had to.

                You'd just need to add the routers to the client list and the users to the user list on the central server.

                You can even set auto expire dates for the users.

                Don't lock your self out like I did wiith a test VM :)

                No page assigned to user, so it is using radius

                Thanks that is a good solution, setting up a radius server right now.

                1 Reply Last reply Reply Quote 0
                • NogBadTheBadN
                  NogBadTheBad
                  last edited by

                  Add the following in Additional RADIUS Attributes (REPLY-ITEM) Class := admins

                  Andy

                  1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.