Dansgurdian AD FilterGroups



  • I'm trying to configure Dansgurdian to pull user from Active Directory and load them into filtergroups, but I don't know how to make this work.

    I have tried configuring the LDAP section of Dansgurdian but cannot seem to make it load users from my AD groups…. I'm not sure that it even support AD.  I have attached a screen shot of my config.

    While researching this problem I ran across this article http://techblog.roethof.net/open-source/dansguardian-and-active-directory/ which seem simple enough to implement but every time I reboot PFSense, dansgurdian's filtergroups file (\usr\local\etc\dansgurdian\lists\filtergroupslist) is over written and my changes lost.

    Thoughts suggestions?

    Thanks!
    ![ScreenHunter_32 Jan. 11 20.37.jpg](/public/imported_attachments/1/ScreenHunter_32 Jan. 11 20.37.jpg)
    ![ScreenHunter_32 Jan. 11 20.37.jpg_thumb](/public/imported_attachments/1/ScreenHunter_32 Jan. 11 20.37.jpg_thumb)



  • Does your pfsense dns configuration can resolve local domains?

    Did you tried to configure the mask?



  • I recently got this working and notice two possible issues/differences in your screen dump.

    1. try putting the IP address of your pfsense box in the Hostname field

    2. in the username field DONT put dc entries.  ie all that I used was cn=Administrator,cn=users

    Also remember that your group names must match exactly corresponding group names in AD (including case).



  • @neil:

    2. in the username field DONT put dc entries.  ie all that I used was cn=Administrator,cn=users

    Yes, just like suggested on field info.


Locked