OPNsense Forum
Archive => 20.1 Legacy Series => Topic started by: wildcard418 on March 17, 2020, 04:37:34 am
-
Hello!
My goal is to use LDAP to authenticate admins from my LDAP Administrators group and also authenticate OpenVPN users from my LDAP OpenVPN group.
What I've done is I've added an LDAP server (Jumpcloud) and have successfully imported users from my LDAP Administrators group to the Opnsense admin group.
I added a 2nd LDAP server (also Jumpcloud) but with the Extended Query line modified to point at my OpenVPN Group. Both LDAP servers are identical except for the Extended Query line. Either Server will work independently as intended if the other is disabled in System > Settings > Administration > Authentication.
The problem is only one sever works if both are enabled. When I hit the cloud import button, it only shows me users from one of the LDAP servers. I'm trying to import users from the Administrators group for administrator users, and import users from the OpenVPN group for use in OpenVPN authentication. It seems I can only import from one group or the other when both LDAP servers are enabled.
More information: Both LDAP servers are identical except for the Extended Query line.
Administrator Users: &(memberOf=CN=Administrators,ou=Users,o=MYORGID,DC=jumpcloud,DC=com)OpenVPN Users: &(memberOf=CN=OpenVPN,ou=Users,o=MYORGID,DC=jumpcloud,DC=com)
This feels like a bug, simply because both servers work perfectly independently. What can I do to import from both groups simultaneously?