On the off chance that anyone was following my issue I wanted to post the
resolution.
Quite simply the interim bind connection required a narrower Base DN,
previously set to the dc= components only (i.e. dc=examples,dc=com).
We revised this to cn=users,cn=accounts,dc=examples,dc=com in order to
r
Hi Andy,
Thanks for sharing your experience.
Unfortunately I have no experience in the method you are currently
attempting so can't offer any thoughts, best of luck!
Regarding my issue I am still working through the options - something must
have changed in the 4.5 release as it was all working p
On 9 October 2017 at 12:46, Sumit Bose via FreeIPA-users <
freeipa-users@lists.fedorahosted.org> wrote:
> On Mon, Oct 09, 2017 at 11:50:59AM +0100, Andy Stubbs via FreeIPA-users
> wrote:
> > I'm having a bit of a hard time trying to enforce OTP on VPN access using
> > FreeRADIUS backed by FreeIPA
Hi Callum,
On 9 October 2017 at 11:59, Callum Guy wrote:
> Hi Andy,
>
> Although this isn't going to help resolve your problem I wanted to let you
> know that I am currently working through a similarly confusing OTP
> authentication issue which appears to have been introduced following our
> upg
On Mon, Oct 09, 2017 at 11:50:59AM +0100, Andy Stubbs via FreeIPA-users wrote:
> I'm having a bit of a hard time trying to enforce OTP on VPN access using
> FreeRADIUS backed by FreeIPA as the auth oracle.
>
> I'm using a FreeIPA 4.5.0-21 client which is running FreeRADIUS 3.0.13-8,
> enrolled to
Hi Andy,
Although this isn't going to help resolve your problem I wanted to let you
know that I am currently working through a similarly confusing OTP
authentication issue which appears to have been introduced following our
upgrade to FreeIPA 4.5 / CentOS 7.4.
In our situation we are authenticati