Project

General

Profile

Actions
Copy link

Feature #11920

open

SAML Authentication for pfSense (VPN and webConfigurator)

Added by Kris Phillips about 5 years ago. Updated 29 days ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Authentication
Target version:
-
Start date:
05/13/2021
Due date:
% Done:

0%

Estimated time:
Release Notes:
Default

Description

A customer has requested SAML authentication support for things like Azure as an alternative to LDAP and RADIUS. Please reference internal ticket number 84890 for more details.

There are some projects that exist for making the webConfigurator work with SAML for authentication. See here:
https://github.com/jaredhendrickson13/pfsense-saml2-auth

Additionally, it seems that OpenVPN has support for this as an authentication method.

Actions
Copy link
 #1

Updated by Viktor Gurov about 5 years ago

see also #9970

Actions
Copy link
 #2

Updated by jeffrey Smith almost 3 years ago

Have been told in https://forum.netgate.com/topic/182512/login-security-phishing-resistant-mfa/ that this was discussed internally and there are non-trivial issues with implementing this. Any chance of adding this list to the feature request.

Actions
Copy link
 #3

Updated by Wagner Ferreira about 2 years ago

That would be great, I'm changing my LOCAL AD to Microsoft Entra ID and I now need to authenticate my VPN with it.

Actions
Copy link
 #4

Updated by Tue Madsen 29 days ago

Yes, I have customers where this would be a major score as well. Especially for IPSEC VPN two factor auth support.

Actions
Copy link

Also available in: Atom PDF