Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    FreeRadius - LDAP - AD

    Scheduled Pinned Locked Moved
    Wireless
    2
    3
    5.8k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      robsonsilvasan
      last edited by

      Hi guys.

      I'm testing FreeRadius making LDAP connection to Active Directory, to authenticate users using a wireless network.

      With a local base, PfSense works perfectly, but can not integrate with the "filter" and "base filter".

      Does anyone have an example of filter configuration and base filter connection with AD?

      Attach image of the screen where you were doing a setup.

      Thank you for your attention.

      PfSenseFreeRadiusLdap.png
      PfSenseFreeRadiusLdap.png_thumb

      1 Reply Last reply Reply Quote 0
      • R
        robsonsilvasan
        last edited by

        I did several tests.

        And with this filter worked. "Login OK" appears when I use the PfSense prompt with the "radtest" command, but when I use the phone it appears "login incorrect". Using the same user as MS AD.

        Filter = "(sAMAccountName =% {Stripped-User-Name}: -% {user-name}})"
        Base_filter = "(objectclass = *)"

        Need to configure something else?

        Any additional encryption settings?

        Now I think it's a little short

        If anyone knows, thank you

        : D

        1 Reply Last reply Reply Quote 0
        • DerelictD
          Derelict LAYER 8 Netgate
          last edited by

          I removed all the copies of your post that were cross-posted to other language forums. Please do not do that.

          If English is not your first language and you want to post in English and in that forum, that would be acceptable.

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post