[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] invalidate username/password setting via management interface


  • Subject: Re: [Openvpn-users] invalidate username/password setting via management interface
  • From: Wilhelm Meier <wilhelm.meier@xxxxxxxx>
  • Date: Mon, 14 Jan 2008 13:11:02 +0100

Am Montag, 14. Januar 2008 schrieb Erich Titl:
> Wilhelm Meier wrote:
> ...
>
> > If there are other solutions to this senario comments are
> > appreciated ;-) (pre-shared keys are not a solution, since user
> > authentication is required, because the openvpn-server has to
> > distinguish between user-groups - only some are allowed to make a
> > vpn connection).
>
> Why not use certificate based authentication, It would make life so
> much easier. The authentication is made against the access to the
> private key and the CN is used to distinguish the users.

The distinction must be made upon user-identities, not system 
identities.

-- 
Wilhelm
______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users