OpenVPN and AD
-
Greetings and salutations.
I searched the forums but I didn't find the answer (or anyone reporting the same issue as me)I set up OpenVPN and everything works well.
my problem is when i try to access AD resources it prompts me for my full AD UID and pass.
even tho the workstation is on the domain and works fine when in (not VPN) the network.
typing in UID and pass fails, typing in domain\UID and password fails.
I have to type in FQDN\UID and pass… then everything works.
so i have to type in:
vextor.net\johndoe
cause vextor\johndoe doesn't work????i assume this is an AD issue but it works fine in the network just not via openVPN on PFsense
So, here is my network setup:
192.168.12.0/24 : main network behind pfSense
192.168.12.1 : pfSense box 1.2.2 (LAN)
192.168.12.2 : Server 2003 (active directory) (SP2)
192.168.13.0/24 : Remote computer VPN IP pool for VPN clients
192.168.13.100: workstation connected via VPNFrom the VPN'ed workstation I can ping everything and get to internal network resources (workstations, Servers).
again from local workstations there is no problemclient
dev tun
proto udp
remote vextor.net 1194
ping 10
resolv-retry 2
nobind
persist-key
persist-tun
ca ca.crt
cert openvpn.crt
key openvpn.key
ns-cert-type server
comp-lzo
pull
verb 1any ideas?
Vex -
any ideas???
-
have you set up NetBIOS properly in your pfsense openvpn settings? These should be set to your domain controller