Hello community,
I'm playing around possible configurations for a vpn server. Nowadays I'm using pam plugin for auth, easy-rsa for pki and multiple vlans assigned by client cn. I would like to integrate a little bit more LDAP on the game, I was thinking on:
* Retrieve these values: ca, cert, key, dh from a fixed location at ldap tree.
* Look for client CN certificate object over a OU and use it to auth.
* Look for client CN client-config-dir object over a OU and retrieve options from there.
There are already many schemas that would fit that objects but as far as I researched over internet and this forum, I couldn't find information related. I almost sure that it is not possible with default installation nor with community plugins that I found around.
My big question is: has this design any drawback that I'm not seeing?
If not, would be possible with actual plugin hooks (...and love for coding) to write a new one making that integration?
Thank you.
Andres.
PKI + CCD - LDAP Integration
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech