Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec with AD authentication

    Scheduled Pinned Locked Moved IPsec
    2 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      DrydenK
      last edited by

      I would like to clarify one thing. Is it possible, with pfSense 2.3, to use IPSec/L2TP authenticating through LDAP?

      I've seen contradicting pages in that sense. For example, Itctech says in https://forum.pfsense.org/index.php?topic=90753.msg504731#msg504731 that it's not possible, but in https://forum.pfsense.org/index.php?topic=67700.msg370396#msg370396, Rubicon says he has it working.

      Which one is the case? Do I really have to install Radius in my PDC or BDC to allow pfSense-IPSec to authenticate to my AD?

      I'm running pfSense 2.3.4 in a Xen VM. IPSec/L2TP is working with the internal database, and I've successfully set  an LDAP Authentication Server setup pointing to my AD, but failed to make IPSec use it.

      Thank you,

      Roberto Greiner

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        It looks like the only option there is RADIUS, not LDAP. Maybe try setting up AD NPS and a RADIUS authenticator instead.

        https://doc.pfsense.org/index.php/L2TP/IPsec

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.