Access Server 2.7 versions

New beta OpenVPN Connect v3 software for Windows and macOS is now available in the client web interface.

The OpenVPN Connect v2 client software is also still present as secondary option.

Control over which clients you wish to offer to your users is available in the CWS Settings page in the Admin UI.

OpenVPN Access Server and the bundled Connect client software programs are now available as two separate packages.

Installation of Access Server and related Connect Client software will now happen primarily via an official software repository.

The software can still be downloaded from our website as two separate packages that belong together.

A build for the Debian 10 operating system code-named ‘Buster’ has been added.

A problem with retrieving and activating renewal keys from the Admin UI was resolved.

The Google Authenticator enrollment was improved. You now have to provide a valid 6 digit code before enrollment is complete.

The Google Authenticator global on/off setting was moved to the Authentication section in the Admin UI.

An option was added to the Admin UI to allow users to change their own password in LOCAL authentication mode.

If enabled, the client web service now allows users to change their own password in LOCAL authentication mode.

The admin web service and the client web service were updated with a new logo and a new look.

New options were added in as.conf to control some items that are customizable, like disabling/enabling the footer.

The bootstrap library was updated to version 4.3.1.

The jQuery library was updated to version 3.4.1.

A bug that would not let some users download profiles on the client web service in some extremely rare cases was found and resolved.

A bug where adding an admin-level user to a non-admin group could result in the user not being joined to the group has been resolved.

A bug where the sacli IP command no longer functioned has been resolved.

A bug with the Log Reports page in Internet Explorer has now been resolved.

A regression where the 24-hour default session token timeout didn’t work correctly has now been resolved.

Minor various adjustments in the admin and client web services have been made to improve the user experience.

Resolved a problem where upon creating a new cluster, the first node would in some situations still erroneously present itself as standalone node.

Resolve an upgrade issue where, if the default profile has been deleted, the upgraded server would fail to start the web services properly.

A related issue where the default profile could not be deleted in 2.7.3 even when it is not in use has also been resolved.

In cluster mode, the Admin UI could become unavailable if one of the nodes hangs, and this issue is now resolved.

Added a hint about installing libmysqlclient-dev if it is missing on the system and conversion to MySQL database format is attempted.

A regression where inter-client connectivity function would not work as expected in stand-alone mode has been resolved.

Enforced redaction of MySQL DB credentials in log file in all cases even when debug mode is enabled.

Minor CSS adjustments to the AS cluster mode overview.

A first phase implementation of a clustering feature for Access Server is now implemented as an option.

Multiple access servers can be setup that share the same user database and settings, and users can connect to any of the nodes in the cluster.

Updated the admin UI further with a modern look.

Removed the ‘connect’ functionality from the client web interface, because it can no longer be supported in current browsers.

Added a session-token sharing function so clients connected to a cluster can automatically switch to a next available node in case of a problem.

Updated the Connect Client for Windows and macOS with session-token sharing functionality.

The Windows Connect Client has been signed with a new software publisher certificate as the old one had expired.

DNS server detection in the operating system Ubuntu 18 was broken, this has now been fixed in this release.

Making changes in the search results of User Permissions is now working properly in this release.

The default settings for a fresh installation of Access Server is now to listen to all interfaces, but can still be changed to listen to specific interface.

Fixed a regression where the WINS server fields in Advanced VPN were missing.

PyOpenSSL, PyRad, and other libraries were updated to modern versions.

mbedTLS (previously known as PolarSSL) support was dropped in Access Server. Clients can still use it, but the server now relies on just OpenSSL again.

Builds for Debian 7 have been dropped because that operating system is no longer in support.

An issue related VPN connectivity from a Windows/macOS client in combination with Google Authenticator and/or LDAP was fixed.