Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [SOLVED] TROUBLE TO THE IMPLEMENT VPN-RADIUS

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 2 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User
      last edited by

      Hi, anybody help me i have implemented pfsense vpn-roadwarrior but now i want to have this but with radius; i have a windows 2008R2 with Active Directory and RADIUS, but when i try joind a user created with openvpn client, i execute the file .exe i put the username and password but appear me the next:

      Mon Sep 21 20:05:54 2015 Warning: cryptapicert used, setting maximum TLS version to 1.1.
      Mon Sep 21 20:05:54 2015 OpenVPN 2.3.8 i686-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Aug  4 2015
      Mon Sep 21 20:05:54 2015 library versions: OpenSSL 1.0.1p 9 Jul 2015, LZO 2.08
      Enter Management Password:

      Please anybody tell me why this error? in the openvpn server i have radius authentication but also i have that install active directory? any documentation please?

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        "error=unsupported certificate purpose"

        Looks like your using the wrong cert if you ask me..  There have been quite a few of these threads of late.  Did you use the wizard to setup the openvpn server - this makes it impossible to mess up the certs.  If you created cert in CA you prob created a user cert vs server cert.

        edit: Have you looked at this doc?
        https://doc.pfsense.org/index.php/Using_OpenVPN_With_FreeRADIUS

        I looked over the doc and looks pretty straight forward.  I think your issue is you have the wrong certs.  Are you saying everything worked find just using tls auth or or user auth, and or tls+user auth and your only getting this unsupported cert error when you switch using radius?

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • ?
          A Former User
          last edited by

          Thanks, this work, thanks for you help

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.