Single Sign-on (aka one set of credentials) is one thing, the captive portal's ability to automatically _receive_ (and authenticate) the credentials from the requesting client/browser is another. Unless I'm misunderstanding, Ryan wants to get rid of the username/password prompt from the captive portal, and have the "current" windows logon credentials automatically pass to the captive portal, which is currently not possible with pfSense-- ISA Server is the only thing I know of that does this.
Dimitri Rodis Integrita Systems LLC http://www.integritasystems.com -----Original Message----- From: Jim Pingle [mailto:[email protected]] Sent: Tuesday, April 21, 2009 1:18 PM To: [email protected] Subject: Re: [pfSense Support] Can captive portal authenticate based on windows login Ryan wrote: > >> Without seeing the CP screen, automatically logging them in with Windows > credentials, no. You can authenticate them on. >> the CP screen with RADIUS using their Windows credentials to IAS on a > Windows Server DC (if you're using AD). > > > I kinda thought that was the case. Thank you for your help Chris. Do you > know of anything that might do this? I don't know if the Captive Portal can be coerced to support LDAP or Kerberos, but I have heard of people achieving a single sign-on type setup with Squid that way. Jim --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
smime.p7s
Description: S/MIME cryptographic signature
