Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    LDAP auth via SSH

    Scheduled Pinned Locked Moved General pfSense Questions
    6 Posts 4 Posters 517 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mogarchy
      last edited by

      Hi all,
      I'm working on beefing up my security a bit and want to get away from Local Database Auth and have my team log in with individual credentials - I have LDAP working with my G Suite Google Workspace Directory and GUI logins are fine, but no luck with SSH.

      I see a couple posts asking about this from a few years back but no seemingly no resolution, any help?

      Thanks!

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        You want to use LDAP over SSH, like via an SSH tunnel?

        Or you want to authenticate SSH logins using LDAP?

        Steve

        M 1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          It's not yet possible for SSH users to login via LDAP: https://redmine.pfsense.org/issues/8698

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          M 1 Reply Last reply Reply Quote 0
          • M
            mogarchy @stephenw10
            last edited by

            @stephenw10 I want to authenticate SSH logins to PFsense via LDAP.

            1 Reply Last reply Reply Quote 0
            • M
              mogarchy @jimp
              last edited by

              @jimp Thanks for the info, do you have the power/ability to make it happen? If so what's your price? (not a joke)

              Otherwise, can I use any external authentication server like RADIUS or am I stuck with local authentication for SSH sessions?

              viktor_gV 1 Reply Last reply Reply Quote 0
              • viktor_gV
                viktor_g Netgate @mogarchy
                last edited by

                @mogarchy said in LDAP auth via SSH:

                @jimp Thanks for the info, do you have the power/ability to make it happen? If so what's your price? (not a joke)

                Otherwise, can I use any external authentication server like RADIUS or am I stuck with local authentication for SSH sessions?

                RADIUS shell authentication is implemented in 2.5:
                https://redmine.pfsense.org/issues/10545

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.