Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 21 December 2024, 07:01:27 pm

Login with username, password and session length

CLICK HERE for the The official Endian Roadmap and Issue tracker
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  VPN & LDAP Authentication Fix Script
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: VPN & LDAP Authentication Fix Script  (Read 17070 times)
nlemberger
Jr. Member
*
Offline Offline

Posts: 2


« on: Friday 16 April 2010, 07:24:25 am »

I added to the VPN authentication script in EFW 2.3 to make LDAP auth work.  Despite the KB article, it appears as far as I can tell by reading the source, that VPN auth will never work in 2.3 that way.  This works for me, I can't say it will work for you but I figured I'd post it here to give folks some insight.  You would need to fill out the variables in the VPN Auth function to match your directory.  Good Luck!

This is an updated (backup your original & this needs to be chmod 755) /usr/bin/openvpn-auth

[attached]
Logged
razametal
Full Member
***
Offline Offline

Posts: 15


« Reply #1 on: Friday 16 April 2010, 08:52:51 am »

Great !

Do you know if it's possible to use the Zimbra (www .zimbra. com) LDAP tree?
Logged
nlemberger
Jr. Member
*
Offline Offline

Posts: 2


« Reply #2 on: Monday 19 April 2010, 08:59:07 am »

It should work with any LDAP tree but you will probably have to modify the filter the find the correct DN's.

If not using eDir or if you have passwordless binds turned on, you should also probably add (I found this in my testbed with OpenLDAP):

if password == "":
     return False

to the top of the ldapAuth function - otherwise users will be able to connect if they just specify their username and a blank password.  I've updated the original post's attachment to reflect this addition.
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com