-
Notifications
You must be signed in to change notification settings - Fork 5
/
README
61 lines (47 loc) · 1013 Bytes
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
Dependencies:
-------------
libldap
libpthread
libtool
Installation:
-------------
aclocal
autoconf
libtoolize
automake --add-missing
./configure
make
make install
or
./autogen.sh
./configure
make
make install
Optionally, if you only ran make, you can copy the .so files
from src/.libs/
Configuration:
--------------
Grab the example configuration file: tests/config.conf
%u will be replaced by username
uri=ldap://192.168.9.135
search_filter=(uid=%u)
basedn=ou=users,dc=example,dc=com
binddn=cn=admin,dc=example,dc=com
bindpw=secret
version=3
#ssl=start_tls
#tls_reqcert=never
ssl=off
groupdn=ou=roles,dc=example,dc=com
group_search_filter=|(cn=vpn)(cn=sysadmins)
member_attribute=member
Default values are:
uri=ldap://localhost
basedn=ou=users,dc=example,dc=com
search_filter=(uid=%u)
ssl=off
In your openvpn config add:
plugin /etc/openvpn/ldap-auth/libopenvpn-ldap-auth.so -c /etc/openvpn/ldap-auth/ldap-auth.conf
also, setting:
tmp-dir /dev/shm
will help in case you do not run openvpn as root