Upgrade to 21.02 -> Client Cert on LDAP server no Longer Accepted
I have two authentication servers configured. Both use the same CA which was generated by Samba4. Both are using SSL/TLS Encrypted transport.
One server has nothing defined for the "client certificate" and the other has a certificate which was imported from Samba.
Pre-upgrade, both configurations worked. Post-upgrade, the configuration with the Samba generated cert can no longer authenticate.
When connecting via OpenVPN, the now non-working configuration logs the following:
2021-02-19 09:04:43 AUTH: Received control message: AUTH_FAILED
2021-02-19 09:04:44 SIGUSR1[soft,auth-failure] received, process restarting
2021-02-19 09:04:53 ERROR: could not read Auth username/password/ok/string from management interface
2021-02-19 09:04:53 Exiting due to fatal error
Has anyone seen anything similar?
same issue here after updating pfsense to 2.5.0-RELEASE from before 2.4.5-RELEASE-p1 but with Authentication Servers --> Local Database.
Found out, when you try the same connection and put in user admin credentials, it works perfectly.
So maybe the certificates could not be the issue?