OpenVPN and AD



  • Greetings and salutations.
    I searched the forums but I didn't find the answer (or anyone reporting the same issue as me)

    I set up OpenVPN and everything works well.
    my problem is when i try to access AD resources it prompts me for my full AD UID and pass.
    even tho the workstation is on the domain and works fine when in (not VPN) the network.
    typing in UID and pass fails, typing in domain\UID and password fails.
    I have to type in FQDN\UID and pass… then everything works.
    so i have to type in:
    vextor.net\johndoe
    cause vextor\johndoe doesn't work????

    i assume this is an AD issue but it works fine in the network just not via openVPN on PFsense

    So, here is my network setup:
    192.168.12.0/24 : main network behind pfSense
    192.168.12.1 : pfSense box 1.2.2 (LAN)
    192.168.12.2 : Server 2003 (active directory) (SP2)
    192.168.13.0/24 : Remote computer VPN  IP pool for VPN clients
    192.168.13.100: workstation connected via VPN

    From the VPN'ed workstation I can ping everything and get to internal network resources (workstations, Servers).
    again from local workstations there is no problem

    client
    dev tun
    proto udp
    remote vextor.net 1194
    ping 10
    resolv-retry 2
    nobind
    persist-key
    persist-tun
    ca ca.crt
    cert openvpn.crt
    key openvpn.key
    ns-cert-type server
    comp-lzo
    pull
    verb 1

    any ideas?
    Vex



  • any ideas???



  • have you set up NetBIOS properly in your pfsense openvpn settings? These should be set to your domain controller


Log in to reply