Page 1 of 1

Group Membership

Posted: Wed Jan 13, 2021 1:57 pm
by petrocelli1966
Hi All,
I have been trying to get group membership going. I have the group VPNQuery in AD and I want to allow OpenVPN access only if a user belongs to it. Right now, AD authentication works but once I change RequireGroup to true, I get auth-fail.

I currently have the following below in my Group settings. I have tried various combinations of Search Filters and Member Attributes but nothing works so far.

<Group>
BaseDN "CN=Users,DC=domain,DC=net"
SearchFilter "CN=VPNQuery"
MemberAttribute "member"
</Group>

I would really appreciate some help.

Re: Group Membership[Solved]

Posted: Thu Jan 14, 2021 3:25 pm
by petrocelli1966
The issue was with my authorization search filter. I eventually found another doc that used (&(sAMAccountName=%u)). That worked for me. Thanks.