WebGUI: Authorization via Radius

[kalteVollmilch]

Hello everyone,

I want to import users from Radius into the local database so I can allow them to access the webGUI.
According to https://wiki.opnsense.org/manual/users.html, this can be done.
So far, I've been able to import users from LDAP, which is nice but not really  what I want :(.

Is there any way to do this or is it just not posssible?

Thanks for any help in advance :)

[mimugmail]

What do you mean with "import"? Do you want to authenticate via external Radius? Then add this under

System - Access - Servers

And switch Authentication Server in

System - Access - Settings

[kalteVollmilch]

by "importing" them I mean adding a user from an external server (in this case Radius) to the local Database, so I can grant rights to those users via groups, but the authentication itself is still done via the external server.
The link from my first post probably describes it better than I do (https://wiki.opnsense.org/manual/users.html#authorization).

I've already done the steps you described, which allows me to sign in to the webGUI, however, as I can't assign any groups, I just get the "No page assigned to this user! Click here to logout" error.

So my question is, how I can import users from Radius and assign groups to them

[mimugmail]

Hm, never tried.
Try creating a new user locally with the same name (but different pw), give proper rights and then test again with radius backend authentication.

[kalteVollmilch]

Try creating a new user locally with the same name (but different pw), give proper rights and then test again with radius backend authentication.

Already tried this, hasn't worked for me. Probably because there a '@' in the username, which OPNsense doesn't like.