Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    OpenVPN and LDAP - Could not bind to server

    OpenVPN
    1
    3
    3243
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      MacGatlin last edited by

      Several other students and I are creating coursework with our College's Dean to setup a mock datacenter for future students. We have one public IP that we filter traffic through and have an OpenVPN setup for. We currently have OpenVPN working through a local authentication setup in pfSense.

      Our ultimate plan is to allow for students to authenticate off of our university's LDAP server. We were given all of the LDAP information that is used by our College's web administrator that we currently use for students to login to any of our college's applications. We verified all information was correct. However, whenever I click on "Select" next to Authentication Containers, we continuously receive the error: "Could not connect to the LDAP server. Please check your LDAP configuration."

      The System logs show these messages:
      php: /diag_authentication.php: ERROR! Could not bind to server FSU-LDAP.
      php: /system_usermanager_settings_ldapacpicker.php: ERROR! ldap_get_user_ous() could not bind to server

      We have verified that the ACL's are correct and we should have access to the LDAP and LDAPS ports. I have done hours of researching with no real answers as to what I can look into as far as troubleshooting.

      From my understanding, the university uses a LDAP eDir server. The configuration file we were given is called ldap.conf which I can only assume is pulled from an OpenLDAP setup from our web-servers (running on Ubuntu). There are several "pam" and "nss_map" settings throughout the file. However, we are not given any options in pfSense to work with those.

      Is there any place I can look for a configuration file that I could try to match up some of these with?

      Does anyone else have experience with this? We do not have any access whatsoever to the LDAP servers other than a proxy user account for the Bind DN and password.

      1 Reply Last reply Reply Quote 0
      • M
        MacGatlin last edited by

        Forgot to note that I running pfSense 2.0.3 on an ESXi Virtual Machine. The underlying hardware is a Sun server from 2007. Dual AMD Opteron Dual-Core CPU with 8GB of RAM.

        1 Reply Last reply Reply Quote 0
        • M
          MacGatlin last edited by

          Anyone had experience with setting up LDAP with OpenVPN?  :-\

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy