Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPsec ldap windows 10 login

    Scheduled Pinned Locked Moved IPsec
    2 Posts 2 Posters 827 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rmeegama
      last edited by

      I have configured IPsec in Pfsense 2.5.2 When user-authentication in IPSec->Mobile clients is set to local database, I can login using Windows 10 native vpn client without any issue. But when I set mobile clients to ldap, windows client keeps on asking for password (3 times) and fails (with message "Can't login to VPN"). Diagnostics->Authentication->AuthenticationServer->Ldap server is successful. This happens whether or not the windows machine is behind a firewall. IPsec log file is attached. What could be the problem.2.png

      1 Reply Last reply Reply Quote 0
      • F
        Fiikus
        last edited by

        Hi,

        I have the same problem.
        LDAP works. An LDAP user can logging in to the web interface.
        Diagnostics / Authentication also works.
        When a local user (EAP Keys) logging in to Ipsec VPN, everything works.
        I have the same errors when logging in to an LDAP user.

        16 [IKE] <con-mobile | 60> no EAP key found for hosts '000.000.000.000' - 'ldap_user'
        16 [IKE] <con-mobile | 60> EAP-MS-CHAPv2 verification failed, retry (2)

        Thank you

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.