ovpn-ad-sync/oas_configs/vpn.example.com.ldap

<LDAP>
# CHANGE THIS!!! to your AD server
URL ldap://192.168.1.22:389
# CHANGE THIS IF YOU USE A DIFFERENT SYSTEM BIND USER
BindDN oas_user@EXAMPLE.COM
# Bind Password
Password oas_user

# these settings should be ok
Timeout 15
TLSEnable no
FollowReferrals yes
</LDAP>
<Authorization>
# CHANGE THIS TO MATCH YOUR DOMAIN
BaseDN "CN=Users,DC=example,DC=com"
SearchFilter "(&(sAMAccountName=%u))"
RequireGroup true
<Group>
# CHANGE THIS TO MATCH YOUR USER DN
BaseDN "cn=Users,dc=example,dc=com"
# CHANGE THIS TO MATCH YOUR OPENVPN USER GROUP
SearchFilter "(cn=OpenVPNUsers)"
MemberAttribute "member"
</Group>
</Authorization>
Modified server config sample directories and readme updated with assumptions and install instructions 2014-12-03 14:05:36 -05:00			`<LDAP>`
			`# CHANGE THIS!!! to your AD server`
			`URL ldap://192.168.1.22:389`
			`# CHANGE THIS IF YOU USE A DIFFERENT SYSTEM BIND USER`
			`BindDN oas_user@EXAMPLE.COM`
			`# Bind Password`
			`Password oas_user`

			`# these settings should be ok`
			`Timeout 15`
			`TLSEnable no`
			`FollowReferrals yes`
			`</LDAP>`
			`<Authorization>`
			`# CHANGE THIS TO MATCH YOUR DOMAIN`
			`BaseDN "CN=Users,DC=example,DC=com"`
			`SearchFilter "(&(sAMAccountName=%u))"`
			`RequireGroup true`
			`<Group>`
			`# CHANGE THIS TO MATCH YOUR USER DN`
			`BaseDN "cn=Users,dc=example,dc=com"`
			`# CHANGE THIS TO MATCH YOUR OPENVPN USER GROUP`
			`SearchFilter "(cn=OpenVPNUsers)"`
			`MemberAttribute "member"`
			`</Group>`
			`</Authorization>`