Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    CP authenticating to IdP via SAML?

    Scheduled Pinned Locked Moved Captive Portal
    4 Posts 2 Posters 2.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      l.capriotti
      last edited by

      Is there any planned activity on using external Identity Providers (google/facebook/private IdP etc) for the captive portal authentication?

      1 Reply Last reply Reply Quote 0
      • L
        lsense
        last edited by

        I don't think there's any planned activity on this. Don't wait for it.

        It's however possible to do what you said, I did it: external authentication with Shibboleth IdP or any other SAML IdP or X.509 certificates among others. It needs quite a lot of work and modifications anyway.

        1 Reply Last reply Reply Quote 0
        • L
          l.capriotti
          last edited by

          Are you in the position to share your work so that it could be evaluated for future inclusion in the official package?

          1 Reply Last reply Reply Quote 0
          • L
            lsense
            last edited by

            I have to ask to my boss..those changes are for our internal network.

            Anyway the main idea is to redirect the user to an external php page (idp) where he can authenticate.
            If the auth is ok the user gets back to the CP with a gpg signed message from idp.
            the CP checks the gpg sign and allows the user to login.

            I will publish more details if allowed.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.