| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758 |
- <!DOCTYPE html>
- <html lang="en" xmlns="http://www.w3.org/1999/xhtml">
- <head>
- <title>Setup OpenVPN Access Server LDAP Authentication</title>
- <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
- <meta charset="UTF-8">
- <meta name="keywords" content="OpenVPN,OpenVPN Access Server,Access Server,LDAP,Authentication,How To,Tutorial,i12bretro">
- <meta name="author" content="i12bretro">
- <meta name="description" content="Setup OpenVPN Access Server LDAP Authentication">
- <meta name="viewport" content="width=device-width, initial-scale=1.0">
- <meta name="revised" content="06/01/2022 06:18:36 PM" />
- <link rel="icon" type="image/x-icon" href="includes/favicon.ico">
- <script type="text/javascript" src="https://code.jquery.com/jquery-3.5.1.min.js"></script>
- <script type="text/javascript" src="includes/js/steps.js"></script>
- <link href="css/steps.css" rel="stylesheet" type="text/css" />
- </head>
- <body>
- <div id="gridContainer">
- <div class="topMargin"></div>
- <div id="listName" class="topMargin">
- <h1>Setup OpenVPN Access Server LDAP Authentication</h1>
- </div>
- <div></div>
- <div id="content">
- <ol>
- <li>Log into OpenVPN Access Server</li>
- <li>Click Authentication > LDAP in the left navigation menu</li>
- <li>Click the Use these credentials toggle to Yes</li>
- <li>Fill in the LDAP configuration form as follows:
- <p>LDAP host: i12bretro.local<br />
- Base DN: CN=Users,DC=i12bretro,DC=local<br />
- Username Attribute: sAMAccountName<br />
- Bind DN: readonly_svc@i12bretro.local<br />
- Additional LDAP Requirements: memberOf=CN=VPN Users, CN=Users, DC=i12bretro, DC=local</p>
- </li>
- <li>Click the Save Settings button</li>
- <li>Click User Management > User Permissions in the left navigation</li>
- <li>Create a new username matching an LDAP user name and click the Admin checkbox</li>
- <li>Click the Save Settings button</li>
- <li>Go back to Authentication > LDAP in the left navigation menu</li>
- <li>Click the Use LDAP button</li>
- <li>Click the Update Running Server button</li>
- <li>Click Logout at the bottom of the left navigation</li>
- <li>Log back in with the newly created user and their Active Directory password</li>
- </ol>
- <p>Note: If LDAP authentication fails, revert back to local authentication using the following commands:<br />
- cd /usr/local/openvpn_as/scripts<br />
- ./sacli --key "auth.module.type" --value="local" ConfigPut<br />
- ./scali start</p>
- <p>If you ever mess up the OpenVPN AS configuration beyond repair, run the following command to reset the configuration back to defaults and try again:<br />
- ovpn-init --force</p>
- </div>
- </div>
- </body>
- </html>
-
|
