[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Restrict access to VPN Server by CN


  • Subject: Re: [Openvpn-users] Restrict access to VPN Server by CN
  • From: Stefan Bethke <stb@xxxxxxxxxx>
  • Date: Mon, 4 Jun 2007 23:23:25 +0200

Am 04.06.2007 um 18:01 schrieb Torsten Krah:

> I've got a box with more than one vpn server instance running.
>
> Now i've got the scenario, that i need to restrict the access to these
> instances based on the CN of the certificate.
> Is this possible?
> CN=A should have Access to VPN instance 1 - but not to the second one.
> CN=B should have access to both.
> How could this be done?
>
> All the certificates are still valid - CRL is no choice - i only  
> have to
> make sure, that each CN can only access the vpn he is allowed to  
> connect
> to.

Use --client-config-dir and --ccd-exclusive: only clients who have a  
config file in the CCD will be allowed to connect.


HTH,
Stefan

-- 
Stefan Bethke <stb@xxxxxxxxxx>   Fon +49 170 346 0140


____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users