PPTP Authentication Against Active Directory

  • Hello!
    Has anyone had any luck configuring pfSense to validate users loggin in to a PPTP VPN against Active Directory?

    I can get pfsense to pull OU's etc. from AD but I am not having any luck getting it to use AD to validate incoming PPTP connections.

    I would rather not use the AD server as a Radius Server, as part of the reason I am moving the PPTP connections to pfsense is to lesson the workload on the AD server.


  • As I understand it, you need to use Microsoft's RADIUS implementation via IAS in order to authenticate PPTP sessions against AD. IAS doesn't need to be on the domain controller (it can be on a member server) but IAS needs to be installed somewhere and pfSense needs to be configured to auth via RADIUS against it.

Log in to reply