Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    IPsec + ldap xauth

    2.1 Snapshot Feedback and Problems - RETIRED
    3
    4
    1826
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nataans last edited by

      Hello all,

      I have been testing IPsec on the latest snapshot (built on Fri May 25 18:38:27 EDT 2012 ) and when I set user authentication source to 'LDAP', racoon service seems to fail to start. The logs show the following:

      racoon: ERROR: /var/etc/racoon.conf:25: "ldapcfg" racoon not configured with –with-libldap

      I have read some older posts regards ldap authentication and people seem to think that racoon has been compiled with ldap option. Can anyone share their thoughts who are experts in this area.

      Many thanks,

      Andris

      1 Reply Last reply Reply Quote 0
      • jimp
        jimp Rebel Alliance Developer Netgate last edited by

        There was never any proper backend code for IPsec to auth against Radius or LDAP.

        We are changing it before 2.1 ships, there's an open ticket yet. There will be a script (like how openvpn does it) so that racoon doesn't need direct knowledge of radius or ldap, it'll call our script and let our script decide if a user is OK or not.

        1 Reply Last reply Reply Quote 0
        • M
          mattderk last edited by

          I saw in the latest beta build of 2.1 (July 22nd 2012 I think) Xauth LDAP options for ipsec tunnels.  When set it seems to fail.  Should Xauth and LDAP in ipsec work ?

          1 Reply Last reply Reply Quote 0
          • jimp
            jimp Rebel Alliance Developer Netgate last edited by

            No, it doesn't work right now.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy