multiple vpn and AD authentication

pfarthing6 · Post by **pfarthing6** » Fri May 06, 2011 9:42 pm

I'm familiar with using Samba to allow authentication, but any given system has the limitation of only being able to join one AD domain.

What I'm attempting to figure out is how i can have OpenVPN installed to a single host and be able to authenticate to different domains. Each domain is on a different network, so the host will have a link on each network.

Is it possible then to:
1) run more than one instance of OpenVPN and bind each to the IP of the specific network?
2) authenticate directly with the Windows domain controller instead of installing Samba?

I'm open to other configuration options too!

In asci art, the config would look something like this, where incoming traffic from netA will be attempting to authenticat to a VPN service on either netB or netC.

Code: Select all

                  netB ------ | AD Controller |
                    |
netA ---- | Router/VPN |
                    |
                  netC -------| AD Controller |

Post by **janjust** » Fri May 06, 2011 10:06 pm

1) run more than one instance of OpenVPN and bind each to the IP of the specific network?

yes this is possible, use 'local' to bind an OpenVPN server instance to a specific IP

2) authenticate directly with the Windows domain controller instead of installing Samba?

yes this is possible, see e.g.
http://craig.backfire.ca/pages/computer ... pn-ad-auth

pfarthing6 · Post by **pfarthing6** » Fri May 06, 2011 11:18 pm

Excellent! Much thanks

OpenVPN Support Forum

multiple vpn and AD authentication

multiple vpn and AD authentication

Re: multiple vpn and AD authentication

Re: multiple vpn and AD authentication