Is it possible to have multiple LDAP servers?
-
We have two domains behind the firewall. (domA, domB for discussion purposes)
I set domA users up in a-d and add to the pfsenseaccess group and they can then use VPN.
domB users i have to set up a local account on the pfsense box, which is not a pain for set up, but when the user wants to change their password it becomes an issue.
I set up domB in the server settings and can even test authentication, but it fails when trying to log in with VPN
joe.schmoe only has an account in domBIf I try logging in on the pfsense webpage it gives
Nov 8 08:42:51 php-fpm 62778 /index.php: webConfigurator authentication error for 'joe.schmoe' from 192.168.115.163
Nov 8 08:42:51 php-fpm 62778 /index.php: ERROR! Either LDAP search failed, or multiple users were found.
Nov 8 08:32:19 php-fpm 62778 /diag_authentication.php: ERROR! Either LDAP search failed, or multiple users were found.
Nov 8 08:31:59 php-fpm 62778 /diag_authentication.php: ERROR! Either LDAP search failed, or multiple users were foundsame multiple users and could not authenticate messages in the ipsec log.
thanks
-
What vpn methodology are you using? OpenVPN, L2TP, or IPsec? The configuration will vary depending on which of these you use.