OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Virtual private networks »
  • [OpenVPN] Is there a way to define firewall rules based on AD group or user
« previous next »
  • Print
Pages: [1]

Author Topic: [OpenVPN] Is there a way to define firewall rules based on AD group or user  (Read 1361 times)

nekopep

  • Newbie
  • *
  • Posts: 7
  • Karma: 0
    • View Profile
[OpenVPN] Is there a way to define firewall rules based on AD group or user
« on: June 10, 2023, 11:31:49 am »
I'm using openvpn with ldap authentication connected to our windows Active Directory.
When openvpn client connects it uses user and password form AD. (so opnsense has the ability to know if an user is in a specific AD group)
I want to define some specific rules like: if user in "Developer Group" allow ssh to xxx.xxx.xxx.xxx internal IP.
Is there a way to do this on openvpn?
Thx!
(ps: I'm migrating from stormshield, and it has this functionnality)
Logged

Patrick M. Hausen

  • Hero Member
  • *****
  • Posts: 6700
  • Karma: 564
    • View Profile
Re: [OpenVPN] Is there a way to define firewall rules based on AD group or user
« Reply #1 on: June 10, 2023, 11:46:16 am »
Firewall > Aliases > OpenVPN group

should do the trick. I have not tried it with AD, though.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)

jesusdleguiza

  • Newbie
  • *
  • Posts: 7
  • Karma: 0
    • View Profile
Re: [OpenVPN] Is there a way to define firewall rules based on AD group or user
« Reply #2 on: August 31, 2024, 04:51:28 pm »
Hi, it work? regards
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Virtual private networks »
  • [OpenVPN] Is there a way to define firewall rules based on AD group or user
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2