This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Registration with Azure AD via Open ID Connect

Registration with Azure AD via Open ID Connect

James_A
Valued Contributor

‎08-08-2018 07:40 AM

I see ExtremeConnect 8.1 allows custom Open ID Connect providers, has anyone done this to authenticate to an Azure AD tenant? What username shows up? Can I then match that against an LDAP group for authorization? Pass the username to other applications with ExtremeConnect? Provision a custom I-SID?

The reason I want to auth to Azure AD is to just have laptops auth with their machine account to WPA2-Enterprise wireless but then authenticate the user at the network layer (since switching between machine and user auth at the wireless layer slows down unlocking/resuming from sleep). And pass that information to our web filter via the Lightspeed RADIUS integration, and of course do policy based on group membership.
0 Kudos
1 REPLY 1

Shmulik
Extreme Employee

‎09-25-2018 10:28 PM

James, not possible today. In ExtremeControl, Open ID is designed to be used for guest registration. It cannot be used for 802.1x auth flow at this time. I would suggest to create an FR (Feature Request) by everyone who needs this type of feature. I would like to know the details of the various use cases. But right now you cannot use Open ID for user access flow.

Thanks!

Shmulik
0 Kudos
GTM-P2G8KFN