OPNsense Forum
Archive => 20.7 Legacy Series => Topic started by: loganx1121 on October 09, 2020, 02:55:40 am
-
So I've had LDAP configured for a while on the firewall, but I figured I should start using it to actually login instead of just using the local database. My account is a member of the local admins group. I RDP'd to a VM, logged into the fw as root, Settings | Admninistration | Authentication...I checked both domain controllers and the local database for a backup. I tried to login with my local account, which has the same username and password as my domain admin account, and the page kind of blinks and just shows me the login screen again. When I check the user section from the virtual machine using the root account, my account has been removed from the admin group...
The tester works fine for my account, as well as various other test user accounts I've made. Anyone know why this thing is kicking me out of the admin group?
Oddly enough, if I change the account on the firewall to use a different password than my domain password, it logs in fine. I'm assuming this is just using the local database and not AD auth though.
-
Oh I also tried creating a new group with admin permissions, and adding my account using the import option. Same result.
-
Ok so doing some more testing. If I give my actual account permissions to everything, it works. If I add the account to a group, say, admins, and give the -group- permissions to everything, it kicks me out of the group.
-
You have synchronize option ticked but groups doesnt match
-
Good call. Thanks!