Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    LDAP Authentication Fail with OpenVPN

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 2 Posters 259 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      ctarbet
      last edited by

      I am using this tutorial: https://helpdesk.sherweb.com/en/support/solutions/articles/67000734003-how-to-configure-a-pfsense-virtual-machine-with-openvpn-and-ldap-authentication

      I have LDAP server setup correctly and can use it for pfSense GUI login and Authentication Diagnostics.

      When I attempt to use LDAP user with OpenVPN connection, I receive Authentication Failed / User authentication failed.

      01ba5a53-bd71-4a53-8cce-3e04c4b5494b-image.png

      30bc0998-960c-4354-a10c-48ab2ae69027-image.png

      acd206a4-f4b0-48cc-bc21-e4bec49096e8-image.png

      dd34ad5f-8f47-4187-b08d-b5fb4a77c3a3-image.png

      6af03eec-aab0-4c29-b72b-615ec2a136c3-image.png

      27507542-58ed-4472-922a-3f3bf1e7aec4-image.png

      C 1 Reply Last reply Reply Quote 0
      • C
        ctarbet @ctarbet
        last edited by

        My OpenVPN connection works perfectly with a regular pfSense local user.

        I think that I may not understand which requirements are necessary to connect OpenVPN with the remote LDAP directory as an authentication source.

        M 1 Reply Last reply Reply Quote 0
        • M
          Michal944 @ctarbet
          last edited by

          @ctarbet

          I configured the OpenVPN with OpenLdap. I had some issues regarding to setup but I found the solution:

          1. Start configuring A connection from scratch (SystemUser -> ManagerAuthentication -> Servers) - don't copy the connection!

          Screenshot from 2025-01-17 09-53-21.png
          Screenshot from 2025-01-17 09-56-57.png

          QUERY: &(objectClass=groupOfNames)(cn=vpn)(member=*)

          LDAP tree structure:
          Screenshot from 2025-01-17 09-59-59.png

          Please take a look at the screen. This is an example of configuration, but maybe it'll help you. Good luck!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.