5. IPsec + ldap xauth

IPsec + ldap xauth

  • N

    Hello all,

    I have been testing IPsec on the latest snapshot (built on Fri May 25 18:38:27 EDT 2012 ) and when I set user authentication source to 'LDAP', racoon service seems to fail to start. The logs show the following:

    racoon: ERROR: /var/etc/racoon.conf:25: "ldapcfg" racoon not configured with –with-libldap

    I have read some older posts regards ldap authentication and people seem to think that racoon has been compiled with ldap option. Can anyone share their thoughts who are experts in this area.

    Many thanks,

    Andris

    0
  • Rebel Alliance Developer Netgate

    There was never any proper backend code for IPsec to auth against Radius or LDAP.

    We are changing it before 2.1 ships, there's an open ticket yet. There will be a script (like how openvpn does it) so that racoon doesn't need direct knowledge of radius or ldap, it'll call our script and let our script decide if a user is OK or not.

    0
  • M

    I saw in the latest beta build of 2.1 (July 22nd 2012 I think) Xauth LDAP options for ipsec tunnels.  When set it seems to fail.  Should Xauth and LDAP in ipsec work ?

    0
  • Rebel Alliance Developer Netgate

    No, it doesn't work right now.

    0
Log in to reply
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy