The user manager of OPNsense allows for controlling access to the different part (pages) of the configurator as well as controlling access to particular services on a per user bases.
OPNsense offers integration with external servers for services that require user authentication. These services include:
- Captive Portal
Integrated into OPNsense are the Local User Database and Voucher Server. The Voucher Server is intended to be used with the Captive portal.
External service currently supported are:
- LDAP (OpenLDAP, MS Active Directory, Novell eDirectory)
Users, Groups & Privileges¶
When using the local user manager, either stand alone or on combination with an external authentication server one can define groups to combine a set of privileges for a specific user group. A user should be an individual, a group needs to be specific in such a way that anyone of that group can be granted the same access rights, called privileges.