vmam
RADIUS-to-Okta-MFA
vmam | RADIUS-to-Okta-MFA | |
---|---|---|
10 | 1 | |
23 | 8 | |
- | - | |
1.8 | 7.0 | |
about 3 years ago | 20 days ago | |
Python | Python | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
vmam
- Vmam
- Free and Open Source network access control (NAC) solution
- Python NAC Module
- VLAN Mac-Address Authentication Manager
- Vmam is a Free and Open Source network access control (NAC) solution
- How LDAP is used to enforce the network
-
Mac-Address Authentication Manager
What is the best way to secure your LAN?
In my opinion, the answer is to have the certainty of people accessing their LAN. How?
Via a compiled whitelist or blacklist.
But that's okay if it's less than a hundred users.
When are they more than 10.000? I wrote this tool:
https://github.com/MatteoGuadrini/vmam
(command line but also scriptable) which is used to manage access to your network, authenticating them in LDAP (so they are also tracked).
- Protect your enterprise network with LDAP authentication
- Network Access Manager
RADIUS-to-Okta-MFA
-
MFA recommendations for on-prem
https://github.com/bdalpe/RADIUS-to-Okta-MFA#using-samaccountname-to-find-a-user
What are some alternatives?
packetfence - PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) solution. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, powerful BYOD management options, 802.1X support, layer-2 isolation of problematic devices; PacketFence can be used to effectively secure networks small to very large heterogeneous networks.
FreeRADIUS - FreeRADIUS - A multi-protocol policy server.
another-ldap - Another LDAP is a form-based authentication for Active Directory / LDAP server. Provides Authentication and Authorization for your applications running in Kubernetes.
GlobalProtect-openconnect - A GlobalProtect VPN client for Linux, written in Rust, based on OpenConnect and Tauri, supports SSO with MFA, Yubikey, etc.
multicast-relay - Relay multicast and broadcast packets between interfaces.
daloRADIUS - daloRADIUS is an advanced RADIUS web management application for managing hotspots and general-purpose ISP deployments. It features user management, graphical reporting, accounting, a billing engine, and integrates with OpenStreetMap for geolocation. The system is based on FreeRADIUS with which it shares access to the backend database.
pyreports - pyreports is a python library that allows you to create complex report from various sources
authum - Awesome authentication tool for connecting command line applications to SAML/OIDC identity and service providers
VLANPWN - VLAN attacks toolkit
iambic - IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, human-readable, bi-directional representation of IAM in Git.