I am an openvpn newb. I installed openvpn and openldap and want our users to authenticate against active directory in order to gain access to the VPN. I am attempting to replace our cisco vpn concentrator which is out of warranty and has become unreliable. I will include my configs and errors that I am encountering. If anyone is willing to take a look and offer some direction it would be much appreciated.
I am using phpldapadmin to test the authentication piece and am getting an error, it's reporting that it cannot contact the DC. I would like to start here and once I can get this working, move on to other errors that may exist in my configs. Thank you for taking a look!
contents of auth-ldap.conf
root@vpn:/etc/openvpn/auth# cat auth-ldap.conf
# LDAP server URL
# Bind DN (If your LDAP server doesn't support anonymous binds)
# BindDN uid=Manager,ou=People,dc=example,dc=com
# Bind Password
# Password SecretPassword
# Network timeout (in seconds)
# Enable Start TLS
# Follow LDAP Referrals (anonymously)
# TLS CA Certificate File
# TLS CA Certificate Directory
# Client Certificate and key
# If TLS client authentication is required
# Cipher Suite
# The defaults are usually fine here
# TLSCipherSuite ALL:!ADH:@STRENGTH
# Base DN
# User Search Filter
# Require Group Membership
# Add non-group members to a PF table (disabled)
# Add group members to a PF table (disabled)
This forum is for general conversation and user-user networking.
2 posts • Page 1 of 1
- OpenVpn Newbie
- Posts: 19
- Joined: Mon Oct 10, 2011 5:08 pm
- Forum Team
- Posts: 1568
- Joined: Wed Sep 22, 2010 3:18 am
I will suggest first resolve ldap connection on OpenLDAP forum and support. It's not an OpenVPN issue. First thing, don't use php for testing ldap. Use OpenLDAP included tools. In this case you will eliminate phpldapadmin configuration issues.