EFW Support
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
Friday 15 November 2024, 03:38:37 am
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
The Latest Endian Firewall is now available for download
HERE
14255
Posts in
4377
Topics by
6515
Members
Latest Member:
hulteends
Search:
Advanced search
EFW Support
Support
VPN Support
VPN & LDAP Authentication Fix Script
0 Members and 1 Guest are viewing this topic.
« previous
next »
Pages:
[
1
]
Author
Topic: VPN & LDAP Authentication Fix Script (Read 14613 times)
nlemberger
Jr. Member
Offline
Posts: 2
VPN & LDAP Authentication Fix Script
«
on:
Friday 16 April 2010, 07:24:25 am »
I added to the VPN authentication script in EFW 2.3 to make LDAP auth work. Despite the KB article, it appears as far as I can tell by reading the source, that VPN auth will never work in 2.3 that way. This works for me, I can't say it will work for you but I figured I'd post it here to give folks some insight. You would need to fill out the variables in the VPN Auth function to match your directory. Good Luck!
This is an updated (backup your original & this needs to be chmod 755) /usr/bin/openvpn-auth
[attached]
Logged
razametal
Full Member
Offline
Posts: 15
Re: VPN & LDAP Authentication Fix Script
«
Reply #1 on:
Friday 16 April 2010, 08:52:51 am »
Great !
Do you know if it's possible to use the Zimbra (www .zimbra. com) LDAP tree?
Logged
nlemberger
Jr. Member
Offline
Posts: 2
Re: VPN & LDAP Authentication Fix Script
«
Reply #2 on:
Monday 19 April 2010, 08:59:07 am »
It should work with any LDAP tree but you will probably have to modify the filter the find the correct DN's.
If not using eDir or if you have passwordless binds turned on, you should also probably add (I found this in my testbed with OpenLDAP):
if password == "":
return False
to the top of the ldapAuth function - otherwise users will be able to connect if they just specify their username and a blank password. I've updated the original post's attachment to reflect this addition.
Logged
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Announcements
-----------------------------
=> Project News
=> Latest News and Updates
-----------------------------
Support
-----------------------------
=> General Support
=> Installation Support
=> EFW SMTP, HTTP, SIP, FTP Proxy Support
=> VPN Support
=> Hardware Support
-----------------------------
Development
-----------------------------
=> EFW Wishlist
=> Contribute Your Customisations & Modifications
Page created in 0.047 seconds with 18 queries.
Powered by SMF 1.1 RC2
|
SMF © 2001-2005, Lewis Media
Design by
7dana.com