Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    FreeRADIUS - LDAP: Use ldaps:// in address field

    Scheduled Pinned Locked Moved
    pfSense Packages
    1
    1
    525
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jensseh
      last edited by

      Hi all,

      I would like to use LDAPS to connect to our LDAP server within freeradius on our pfsense. However, it is not possible to type 'ldaps://ldap.domain.extension' in the address field in Services > FreeRADIUS > LDAP on our pfSense. The following error is thrown when I try to save that address via the GUI:
      "The following input errors were detected:
      - The 'Server Address' field for LDAP Server 1 must contain a valid FQDN or IP address."

      Whenever I customize the '/usr/local/etc/raddb/mods-enabled/ldap' file via the pfSense shell and use "server = ldaps://ldap.domain.extension" and I reload the radiusd service it works when I verify the connection with radtest.

      The problem with that approach is that whenever I customize a setting in Services > FreeRADIUS > LDAP, this file resets the server address to "ldap.domain.extension".

      Is there something that I am doing wrong? How do other people connect via ldaps:// connection string? Simply checking the TLS box in the LDAP settings on pfsense doesn't do the trick.

      Thank you for your answer(s) in advance!

      Kind regards,
      Jens

      1 Reply Last reply Reply Quote 0
      • First post
        Last post