OPNsense Forum

English Forums => General Discussion => Topic started by: Wyrm on November 15, 2018, 10:56:57 am

Title: Authentification - TACACS+ support and SCEP for X.509 certifiactes
Post by: Wyrm on November 15, 2018, 10:56:57 am

Is there possible to have TACACS+ authentification support ?
Also there is question if opnsense could use SCEP (Simple Certificate Enrollment protocol ) for X.509 certificates ?

Title: Re: Authentification - TACACS+ support and SCEP for X.509 certifiactes
Post by: mimugmail on November 15, 2018, 11:13:25 am

ATM only Local, LDAP, Radius, 2FA or Voucher supported. I don't think this will come as the whole role based system behind TATACS is too complex to integrate into OPNsense.

SCEP is currently unsupported, I'm also not sure if this should be done on a Firewall itself.
It would be way easier to take a real PKI and only import certificates to OPNsense.