Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | |||
|
cdr:vpn [2018/04/27 02:58] jeredgei [Authentication] |
cdr:vpn [2018/04/27 03:03] (current) jeredgei [Authentication and Setup] |
||
|---|---|---|---|
| Line 11: | Line 11: | ||
| 3. Head on over to the **Client Export** tab. Scroll to the bottom and you will see a bunch of export options. These can be used as an all in one install package (bundled configurations), or just as an OpenVPN configuration file (inline configurations) if you already have OpenVPN installed. Download the appropriate file. Give this out to people who need to connect. | 3. Head on over to the **Client Export** tab. Scroll to the bottom and you will see a bunch of export options. These can be used as an all in one install package (bundled configurations), or just as an OpenVPN configuration file (inline configurations) if you already have OpenVPN installed. Download the appropriate file. Give this out to people who need to connect. | ||
| 4. Awesome! You now have the server enabled and a configuration file to connect to it. The last thing we need to do is enable a user to authenticate against. Go to the pfSense User Manager, under the **System** tab at the top of the page. | 4. Awesome! You now have the server enabled and a configuration file to connect to it. The last thing we need to do is enable a user to authenticate against. Go to the pfSense User Manager, under the **System** tab at the top of the page. | ||
| - | 5. There should be two relevant users here, **Lockdown-vpn** and **cdr-vpn-user**. Depending on what the VPN is going to be used for, pick the appropriate user. They are probably disabled, so go ahead and re-enable them. Change the password to something secure. | + | 5. There should be two relevant users here, one for lockdown and one for CDR user. Depending on what the VPN is going to be used for, pick the appropriate user. They are probably disabled, so go ahead and re-enable them. Change the password to something secure. |
| 6. Good job! You should now be able to connect to and authenticate through the VPN into our internal network. | 6. Good job! You should now be able to connect to and authenticate through the VPN into our internal network. | ||
| 7. **Site to Site VPN Only** The site to site VPN router should be in the CSL. Grab it and plug one Ethernet port into an internet enabled wall port, and the other into a switch. Update the password in the configuration on the machine with whatever you changed it to in step 5. Congrats! You're done! | 7. **Site to Site VPN Only** The site to site VPN router should be in the CSL. Grab it and plug one Ethernet port into an internet enabled wall port, and the other into a switch. Update the password in the configuration on the machine with whatever you changed it to in step 5. Congrats! You're done! | ||