Hi,

I am trying to set up the VPN on a VIGOR 5510 UTM and have been successful in getting a connection authenticating via a local account created in the firewall. Now I want to be able to authenticate via active directory. I have seen there is an LDAP section under applications and have hopefully put the right details in (server address, common name identifier and distinguished name as well as port 389) now I'm not sure where to go with the authenticating side on the VPN. I've got an AD group called VPN that I have several users in and I want all these to authenticate via PPTP to my network.

Suggestions? Guides? Pointers? would all be greatly appreciated.

Thanks

Yes, I would also like to know this, using a Vigor 2955 however.

Sorry, not hijacking your post. Just pulling my hair out trying to sort this!

Andy, there is a 3.3.1 firmware out recently for the 295X series, not sure if this improves things for you.

Both, I would suggest trying to use an LDAP explorer software tool to verify the cn location and authentication details.

Best regards,

Neal

Ok i found out I put the wrong active directory location in the application section under radius/ldap.
However even though it is now correct I still cannot get it to authenitcate with active directory. Local db connections work fine, but I just don't want to have to create an account for all the AD users like this, i'd much prefer AD authentication.

So still at a loss with this. I'm pretty sure I've got the latest firmware (3.3.5). I'll keep plugging away at it........

I am also having the same problem. I've already upgraded the routers firmware and sucessfully tested connecting through Simple Bind to my AD using Windows tool LDP.exe.

My configurations are:

Port: 389 (already tried port 636 with no sucess)
Common Name Identifier: CN
Base Distinguished Name: OU=Users,DC=domain,DC=lan