Welcome to radotp Discussions! #2
Replies: 11 comments 8 replies
-
Hi after successfull installed, and can't login using admin/admin |
Beta Was this translation helpful? Give feedback.
-
you can enable Rest API on "radiusd.conf" and connect to it Programmatically. |
Beta Was this translation helpful? Give feedback.
-
The issue has been fixed in version 2. RadOTP now supports HTTPS server natively. |
Beta Was this translation helpful? Give feedback.
-
Hi, I am receiving an error when trying to pull the image. Pulling radotp (ghcr.io/abbas-gheydi/radotp:main) . . . |
Beta Was this translation helpful? Give feedback.
-
Hi, great product, |
Beta Was this translation helpful? Give feedback.
-
is it possible to have radotp send the QR Code to the users via email after signing them on the app? |
Beta Was this translation helpful? Give feedback.
-
@abbas-gheydi thanks for the help |
Beta Was this translation helpful? Give feedback.
-
Great work i want to make use of Enable_Fortinet_Group_Name please can u assist with the step by step am using it with fortigate firewall i want to grant different permissions to any users assigned to the group vpnuser and vpnadmins Just advise on what to do in Radotp to make it work and if you can assist with the Fortigate steps too this will be much appreciated..... I have currently created the groups on AD and Fortigate linked the groups on Fortigate via select. but after testing its only using the vpnadmins only while no user is added on AD. Please assist!!! |
Beta Was this translation helpful? Give feedback.
-
Dear Abbas-Gheydi/Radotp
Thank you for your response. We appreciate your response. It was very
helpful and an eye opener to us.
…On Tue, Sep 10, 2024 at 7:58 PM Abbas Gheydi ***@***.***> wrote:
Sure!
The Enable_Fortinet_Group_Name attribute in FortiGate's RADIUS
configuration is used to specify the group name for user authentication.
When a user attempts to authenticate, FortiGate checks the group name
provided by the RADIUS server against the group names configured on the
FortiGate. This helps in applying specific policies and permissions based
on the user's group membership.
Here are some useful links for more detailed information and configuration
examples:
1.
https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/759080/configuring-a-radius-server
This guide provides a comprehensive overview of setting up a RADIUS
server with FortiGate
2.
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-define-group-based-authorization/ta-p/198062
This article explains how to set up group-based authorization using
RADIUS on FortiGate
3.
https://docs.fortinet.com/document/fortigate/7.4.2/administration-guide/710485/restricting-radius-user-groups-to-match-selective-users-on-the-radius-server
This documentation details how to restrict RADIUS user groups to match
specific users on the RADIUS server
In the RADOTP configuration section, make the following changes:
1.
In the [radius] section, change Enable_Fortinet_Group_Name = false to
true.
2.
In the [ldap] section, add the AD groups to FortiGroups = ["yyy",
"xx"] that exactly match the groups you created on FortiGate.(The group
names on Active Directory and FortiGate must be exactly the same)Also,
uncomment the line by removing the # at the beginning.
I hope this helps! If you have any more questions, feel free to ask.
—
Reply to this email directly, view it on GitHub
<#2 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AXRNVMQDVNGY7ESCEN3UDP3ZV46OVAVCNFSM6AAAAABM3PZXOCVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTANRQGYZTGMA>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
Dear Abbas-Gheydi/Radotp Thank you for your usual support, please can you consider the following in your next release
This will be a great feature to have. God bless you for the good work. |
Beta Was this translation helpful? Give feedback.
-
No I could not move forward since then.
…On Thu, 13 Feb 2025 at 1:04 PM, badcrc ***@***.***> wrote:
Did you manage to use openldap?
I'm trying the same thing and I cannot validate the users.
—
Reply to this email directly, view it on GitHub
<#2 (reply in thread)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AXRNVMR5RJHX37QRJ62N4HT2PSC6FAVCNFSM6AAAAABM3PZXOCVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTEMJYGY4TQOI>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
👋 Welcome!
We’re using Discussions as a place to connect with other members of our community. We hope that you:
build together 💪.
To get started, comment below with an introduction of yourself and tell us about what you do with this community.
Beta Was this translation helpful? Give feedback.
All reactions