OPenVPN and SAML authentication
-
I have been challenged to setup a pfsense/OPenVPN solution on a site that is not part of the primary corporate network. It is actually running in a VMware cloud. So we have been able to get this working, but we are also being asked to use the SAML server that corporate IT has setup to allow users into the VPN server. This will take the management of the AD away from us, and keep it were it belongs, in corporate IT. If these guys have an IDP(Identity Provider) on their side, is there ra way that OpenVPN can use that for its authenation and authorization? Has anyone setup OpenVPN in this mode. I haven't been able to find much about SAML auth for OpenVPN/PFsense.
Thanks.
Sony -
Not that I'm aware of. RADIUS or LDAP would work, if it's AD, LDAP should work out of the box, and RADIUS can be done via NPS if needed.