Is it possible to have multiple LDAP servers?

nosrepmodnar · Nov 8, 2017, 4:50 PM

We have two domains behind the firewall. (domA, domB for discussion purposes)
I set domA users up in a-d and add to the pfsenseaccess group and they can then use VPN.
domB users i have to set up a local account on the pfsense box, which is not a pain for set up, but when the user wants to change their password it becomes an issue.
I set up domB in the server settings and can even test authentication, but it fails when trying to log in with VPN
joe.schmoe only has an account in domB

If I try logging in on the pfsense webpage it gives
Nov 8 08:42:51 php-fpm 62778 /index.php: webConfigurator authentication error for 'joe.schmoe' from 192.168.115.163
Nov 8 08:42:51 php-fpm 62778 /index.php: ERROR! Either LDAP search failed, or multiple users were found.
Nov 8 08:32:19 php-fpm 62778 /diag_authentication.php: ERROR! Either LDAP search failed, or multiple users were found.
Nov 8 08:31:59 php-fpm 62778 /diag_authentication.php: ERROR! Either LDAP search failed, or multiple users were found

same multiple users and could not authenticate messages in the ipsec log.

thanks

tc3driver · Nov 10, 2017, 12:13 AM

What vpn methodology are you using? OpenVPN, L2TP, or IPsec? The configuration will vary depending on which of these you use.