website/integrations: add MeshCentral #10490
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,58 @@ | ||
| --- | ||
| title: MeshCentral | ||
| --- | ||
|
|
||
| <span class="badge badge--secondary">Support level: Community</span> | ||
|
|
||
| ## What is MeshCentral | ||
|
|
||
| > MeshCentral is a free, open source, web-based platform for remote device management. | ||
| > | ||
| > -- https://meshcentral.com | ||
|
|
||
| ## Preparation | ||
|
|
||
| The following placeholders will be used: | ||
|
|
||
| - `meshcentral.company` is the FQDN of the MeshCentral install. | ||
| - `authentik.company` is the FQDN of the authentik install. | ||
|
|
||
| ## authentik configuration | ||
|
|
||
| Create an OAuth2/OpenID provider with the following parameters: | ||
|
|
||
| - Client Type: `Confidential` | ||
| - Redirect URIs: `https://meshcentral.company/auth-oidc-callback` | ||
| - Scopes: OpenID, Email and Profile | ||
| - Signing Key: Select any available key | ||
|
|
||
| Note the Client ID and Client Secret values. | ||
|
|
||
| Next, create an application, using the provider you've created above. | ||
|
|
||
| ## MeshCentral configuration | ||
|
|
||
| Edit the `config.json` for your MeshCentral deployment, and add the following code in the `domains:` subsection: | ||
|
Member
There was a problem hiding this comment. Could you add where the config json is located? if needed |
||
|
|
||
| ```json | ||
| "domains": { | ||
| (...) | ||
| "authStrategies": { | ||
| "oidc": { | ||
| "issuer": "https://authentik.company/application/o/meshcentral/", | ||
| "clientid": "<Client ID>", | ||
| "clientsecret": "<Client Secret>", | ||
| "newAccounts": true | ||
| } | ||
| }, | ||
| (...) | ||
| ``` | ||
| > For Docker deployments, this file should be located in the host directory you mapped to `/opt/meshcentral/meshcentral-data` in the container. | ||
|
|
||
| > Remember to follow JSON formatting rules. | ||
|
|
||
| Restart the MeshCentral server instance and browse to `https://meshcentral.company`, and you should be greeted with a new button to allow signing in with OIDC: | ||
|
|
||
|  | ||
|
|
||
| > Should you need to enable any advanced OIDC configurations, please see [Using the OpenID Connect Strategy on MeshCentral](https://ylianst.github.io/MeshCentral/meshcentral/openidConnectStrategy/). | ||
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.