Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenLDAP for WebGUI authentication

    webGUI
    2
    3
    2940
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      paklids
      last edited by

      I have not had any success so far using any of the recommendations using OpenLDAP.

      I can auth the OpenLDAP user but am unable to get a group listing for that user in Diagnostics->Authentication. Using a packetcapture I can see that OpenLDAP is replying with information about the user (but not the user's group information).

      1 Reply Last reply Reply Quote 0
      • D
        doktornotor Banned
        last edited by

        I guess you misunderstood the feature. Did you create the exact same group you want to use for authentication on your pfSense box? You will not get anything out of it otherwise. The query only returns a group if you have a matching group set up locally (with assigned privileges as required.)

        1 Reply Last reply Reply Quote 0
        • P
          paklids
          last edited by

          I did but it did not work at the time. Tried it again with some tweaks and it looks like it may work well enough for us to use.

          I'm working with our LDAP administrator and was able to determine that the "Group member attribute" must be an attribute that you add at the user level (an attribute that all the group members would share) and points to the group that they all belong to. A better description might be "User memberof attribute".

          1 Reply Last reply Reply Quote 0
          • First post
            Last post