VPN IPSec with AD authentication



  • I am trying to configure IPSec VPN authentication using the AD of our domain.

    I was able to connect PFSense to the Authentication Servers (AD), set the Users group (all users of the domain) and tested the authentication validation (Diagnostics => Authentication). All right!

    For IPSec VPN with local authentication (VPN => IPsec => Pre-Shared Keys) everything is working fine too.

    The problem is when I configure the VPN for authentication using AD (VPN => IPsec => Mobile Clients => Extended Authentication) and switch from Local Database to AD. I do not change any other settings. Then when I try to connect to the VPN (Windows 10 client using IKEv2 native Windows) this way the following error occurs (see log attachment).

    Live long and prosper,
    Marcelo Magalhães
    Rio de Janeiro - RJ - Brazil

    VPN_IPSEC_ERROR.log.zip


Log in to reply