Project

General

Profile

Actions

Feature #8769

open

Allow FreeRADIUS users to change their own Passwords and Pins

Added by NCATS LAB over 6 years ago. Updated about 6 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
FreeRADIUS
Target version:
-
Start date:
08/08/2018
Due date:
% Done:

0%

Estimated time:
Plus Target Version:

Description

Request ability to have Group Permissions which allow a regular radius user (not privileged) to change their own password and One Time Pins. Currently, the only FreeRadius permission gives a user access to all of FreeRadius.

Setup. Using the freeradius package as an Authentication Server, the remote user could then be given initial security information which they could change once they have created an OpenVpn tunnel and logged onto Firewall Web Gui.

Actions #1

Updated by NCATS LAB over 6 years ago

Also request confirmation fields for password, pins and the like.

Actions #2

Updated by Anonymous over 6 years ago

  • Priority changed from High to Normal
Actions #3

Updated by Anonymous over 6 years ago

  • Category set to Authentication
Actions #4

Updated by NCATS LAB over 6 years ago

Please correct spelling of FreeRadius in title

Actions #5

Updated by Jim Pingle over 6 years ago

  • Project changed from pfSense to pfSense Packages
  • Subject changed from System / User Manager / Groups / Assigned Privileges - FreeRadisu Passwords and Pins to FreeRADIUS allow users to change their own Passwords and Pins
  • Category changed from Authentication to FreeRADIUS

Changed title and other info -- this would need to be a new feature in the FreeRADIUS package and not a part of the base system.

Actions #6

Updated by Jim Pingle over 6 years ago

  • Subject changed from FreeRADIUS allow users to change their own Passwords and Pins to Allow FreeRADIUS users to change their own Passwords and Pins
Actions #7

Updated by NCATS LAB about 6 years ago

Isn't this something that could be created as an add-on and not rely completely on the back end radius package?

Actions #8

Updated by Jim Pingle about 6 years ago

No, because there isn't a generic way to change a RADIUS password like that. It depends on the RADIUS server and its database, which is out of the scope of the base system.

Actions

Also available in: Atom PDF