Project

General

Profile

Bug #3547

When using LDAP Groups, user is authenticated and granted xauth ipsec irrespective of group permissions

Added by Ignat Esso over 6 years ago. Updated 12 months ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Authentication
Target version:
-
Start date:
03/26/2014
Due date:
% Done:

0%

Estimated time:
Affected Version:
Affected Architecture:

Description

When using LDAP Groups for IPSec auth, user is authenticated and granted x-auth IPSec access when the user is in no groups.

Looks like once the authentication check in the base dn and Authentication containers succeeds no check is done on the group permissions.

History

#1 Updated by Jim Pingle 12 months ago

  • Category set to Authentication
  • Status changed from New to Closed

The IPsec daemon and other subsystems have changed a lot since this was opened. If it's still an issue, please post on the Netgate Forum .

Also available in: Atom PDF