OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: narfight on September 22, 2017, 02:31:51 pm

Title: LDAP/OpenVPN : Client Specific Overrides
Post by: narfight on September 22, 2017, 02:31:51 pm: Hello,

For apply rules on some user connected by OpenVPN. I use "Client Specific Overrides" to force IP of client by the field "Common name".

but the field "Common name" has case sensitive unlike samAccountName from LDAP. If the client use login "MyLogin" and not "mylogin", my rules is ignored !!!

In LDAP, we can use "caseExactMatch" to force case sensitive search. If in LDAP server, in field "User naming attribute", in put "samAccountName:caseExactMatch:" the server LDAP return correctely the username with case sensitive. but the returne attribute name is "samAccountName" and not "samAccountName:caseExactMatch:" and Opnsense can't authentifie the connection.

Do you have a solution for this ?

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy