Group Membership

How to customize and extend your OpenVPN installation.
Post Reply
petrocelli1966
OpenVpn Newbie
Posts: 16
Joined: Wed Dec 23, 2020 10:12 pm

Group Membership

Post by petrocelli1966 » Wed Jan 13, 2021 1:57 pm

Hi All,
I have been trying to get group membership going. I have the group VPNQuery in AD and I want to allow OpenVPN access only if a user belongs to it. Right now, AD authentication works but once I change RequireGroup to true, I get auth-fail.

I currently have the following below in my Group settings. I have tried various combinations of Search Filters and Member Attributes but nothing works so far.

<Group>
BaseDN "CN=Users,DC=domain,DC=net"
SearchFilter "CN=VPNQuery"
MemberAttribute "member"
</Group>

I would really appreciate some help.

petrocelli1966
OpenVpn Newbie
Posts: 16
Joined: Wed Dec 23, 2020 10:12 pm

Re: Group Membership[Solved]

Post by petrocelli1966 » Thu Jan 14, 2021 3:25 pm

The issue was with my authorization search filter. I eventually found another doc that used (&(sAMAccountName=%u)). That worked for me. Thanks.

Post Reply