Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN + Ldap broken in 21.02-RELEASE-p1?

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 2 Posters 482 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L Offline
      LucSuryo
      last edited by

      We recently upgraded to 21.02-RELEASE-p1 (AWS)
      And since we see an odd behavior that prevent user to login

      setup
      OpenLDAP on the LAN

      tested

      1. System -> User Manager -> Settings
      • Authentication Servers : OK
      • Settings : OK
      1. Diagnostics -> Authentication -> Authentication Server -> Local Database
      • user in local backend database and LDAP : OK
      • user only in LDAP : ERROR : which is correct
      1. Diagnostics -> Authentication -> Authentication Server -> LDAP-SERVER
      • user in local backend database and LDAP : OK
      • user only in LDAP : OK

      Setup OpenVPN

      1. Backend for authentication -> Local database : work as design
        LDAP users can not login

      2. Backend for authentication -> Local database + LDAP : ERROR
        except if the user is in the admins group (there is an admins group in LDAP)

      we did not had this behavior before the upgrade, does anyone has some idea pointers? been pulling my hair for 2 days now....

      Do i need to create a vpn group (remote) in pfense and assign it certain privilege ? and if so which ??

      Thanks
      -ls

      L 1 Reply Last reply Reply Quote 0
      • L Offline
        LucSuryo @LucSuryo
        last edited by

        @lucsuryo

        answering my own problem...

        the username was firstname.lastname : so there is a dot in between
        removing the dot and it works! kinda annoying as this is the company standard

        anyone is aware of this limitation ?

        viktor_gV 1 Reply Last reply Reply Quote 0
        • viktor_gV Offline
          viktor_g Netgate @LucSuryo
          last edited by

          @lucsuryo Could you create a bugreport https://docs.netgate.com/pfsense/en/latest/development/bug-reports.html

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.