Standard users have basic access to all LDAP, RADIUS, and API authentication.
Posix users are the same as standard users, but have extra POSIX information associated with them for LDAP requests. This is required for some systems like Mac OSX logins or Linux machines.
Engineer users have the ability to manage SSH keys in Foxpass and use them to log into servers. They also have POSIX information associated with their account.
We recommend this add-on for all our customers who use RADIUS. RADIUS requires a unique username and password to log into a network, as opposed to just a universal, unsecure shared password. This is a great first step to secure your network, but to take it a step further, many use RadSec or EAP-TLS, which are both included in our Advanced RADIUS solution.
EAP-TLS allows devices to connect over RADIUS using 802.1X certificate based authentication. When you upload a Certificate Authority (CA) to Foxpass, devices with a certificate derived from the given CA will be allowed to connect to a WiFi network without needing to enter a username or password.
RadSec allows the transmission of RADIUS requests over a TLS-encrypted channel protocol to remote RADIUS Servers; this provides secure communication of RADIUS requests, even across untrusted networks. Furthermore, RadSec uses TCP instead of UDP for a more reliable transmission.
By default, Foxpass's LDAP interface is read-only. With our Advanced LDAP add-on, certain fields become read-write and can be modified using the LDAP protocol.
More questions?Get Started Now
An Engineering user ("Eng." user for short) is a user that is authorized to log into Unix/Linux systems using SSH keys. Normally these will be your Engineers and/or DevOps employees. A Posix user is a user that can log in to machines using a username and password only (i.e. Mac OS X).
|Posix Systems & Machines||✓||✓|
|SSH Key Management||✓|