Is your feature request related to a problem? Please describe.
When DFIR-IRIS is configured with ldap authentication mode, it is not possible to login users that are present in the ldap, but not already created in DFIR-IRIS. (the login page displays the authentication error: "Error: Wrong credentials. Please try again.")
Since, the users are present in ldap, I would like them to access DFIR-IRIS without having to provision them manually.
Describe the solution you'd like
It would be nice for DFIR-IRIS to automatically create users the first time they log in with their ldap credentials.
Describe alternatives you've considered
As a work-around, we thought about writing an external script which retrieves all ldap users and creates them via the REST API in DFIR-IRIS. But, this is not that simple, since new users may be added to the ldap at any time. So we need to launch this script periodically.
Maybe, as another alternative for DFIR-IRIS, when in ldap mode, the application could entirely rely on data present in the ldap, rather than creating users locally in its database?
Is your feature request related to a problem? Please describe.
When DFIR-IRIS is configured with ldap authentication mode, it is not possible to login users that are present in the ldap, but not already created in DFIR-IRIS. (the login page displays the authentication error: "Error: Wrong credentials. Please try again.")
Since, the users are present in ldap, I would like them to access DFIR-IRIS without having to provision them manually.
Describe the solution you'd like
It would be nice for DFIR-IRIS to automatically create users the first time they log in with their ldap credentials.
Describe alternatives you've considered
As a work-around, we thought about writing an external script which retrieves all ldap users and creates them via the REST API in DFIR-IRIS. But, this is not that simple, since new users may be added to the ldap at any time. So we need to launch this script periodically.
Maybe, as another alternative for DFIR-IRIS, when in ldap mode, the application could entirely rely on data present in the ldap, rather than creating users locally in its database?