From f3a97487a7ad86334fe7481793ee623d1cba1010 Mon Sep 17 00:00:00 2001 From: Ad Schellevis Date: Thu, 4 Aug 2022 21:55:54 +0200 Subject: [PATCH] Access / Servers - ldap two-factor --- source/manual/how-tos/user-ldap.rst | 6 +++++- source/manual/two_factor.rst | 2 ++ 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/source/manual/how-tos/user-ldap.rst b/source/manual/how-tos/user-ldap.rst index 42454479..5026ec8e 100644 --- a/source/manual/how-tos/user-ldap.rst +++ b/source/manual/how-tos/user-ldap.rst @@ -8,11 +8,15 @@ OpenLDAP and Novell eDirectory, to name a few. OPNsense can use an LDAP server for authentication purposes and for authorization to access (parts) of the graphical user interface (web configurator). When using LDAP for the GUI the privileges have to be defined with the local user manager, -to do so an import of the users from the LDAP source is required. +to do so an (automated) import of the users from the LDAP source is required. In this how-to we will show you how to configure both using Microsoft Active Directory Server. If you only need LDAP for services like VPN, then you can skip steps 3-5. +.. Tip:: + + LDAP can also be combined with :doc:`Two-factor authentication ` + ------------- Prerequisites ------------- diff --git a/source/manual/two_factor.rst b/source/manual/two_factor.rst index 71b9f511..cb9713f6 100644 --- a/source/manual/two_factor.rst +++ b/source/manual/two_factor.rst @@ -18,6 +18,8 @@ Supported services are: * Virtual Private Networking - OpenVPN & IPsec * Caching Proxy +New authentication servers can be added via :menuselection:`System -> Access -> Servers`, which supports +both local users and users synchronised via ldap. ---------------------------- Time-based One-time Password