Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC over LDAP (Synology AD)

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 352 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      pfsensezbiro
      last edited by

      I have a problem with IPSEC over LDAP.

      I use the Synology Active Directory as LDAP Server. Everything is woking fine so fare. I can save and test the LDAP connection unter user manager -> authentication Server. I can also select the container with following settings:

      TCP STARTTLS
      Global Root CA List
      Protocol 3
      Server Timeout 25
      Level Entire Subtree
      Base DN DC=xxx,DC=yyy
      CN=Users,DC=xxx,DC=yyy

      If I test the connection over diagnostics -> authentication I will get the correct Domain groups.

      Also the test on system -> user manager - > settings will work:

      Attempting connection to xxx.xxx.xxx.xxx OK
      Attempting bind to xxx.xxx.xxx.xxx OK
      Attempting to fetch Organizational Units from xxx.xxx.xxx.xxx OK

      The login with the AD accounts to the fw will also work without any problem.

      Just when I try to connect over iPhone IPSec Client to the FW, I get a authentication error.

      Any hint's or is there a bug in the IPSEC module?

      g
      Thomas

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.