Hi All,
I’m using Pfsense OpenVPN with Active Directory authentication and i wlould love to know if it is possible to use MFA authentication based on Privacyidea server to provide OTP authentication combined with Active Directory to access OpenVPN.
Thanks,
henry
April 28, 2020, 1:36pm
2
It should work.
Link PrivacyIDEA to Windows AD users (LDAPresolver).
OpenVPN talks RADIUS; make it query PI for authentication…
1 Like
will i need to install freeradius in PI?
henry
April 28, 2020, 4:30pm
5
Yes
apt-get install privacyidea-radius
https://privacyidea.readthedocs.io/en/latest/installation/ubuntu.html
And then you need to whitelist your OpenVPN server to request authentication…
How to configure OpenVPN I don’t know, never used it…
thanks a lot Henry. I’m running my PI server on Centos 7.
Hi @Anas_Maarif ,
as we do not package rpms for the community-edition, you should check out https://github.com/privacyidea/FreeRADIUS . The configuration documentation can be found here:
https://privacyidea.readthedocs.io/en/latest/application_plugins/rlm_perl.html
Best regards,
Henning
1 Like