Page MenuHomeVyOS Platform

auth-user-pass authentication in OpenVPN
Closed, ResolvedPublic


Currently VyOS does not support user password authentication, it is possible to make it work using openvpn-options only after commenting out checks in /opt/vyatta/share/perl5/Vyatta/OpenVPN/ It would be great if an option was added to the CLI that allows the user to pick between cert based or password based authentication. This mode would bypass the checks for shared-secret-file, tls key, and TLS cert-file as they are not required for auth-user-pass authentication.

More info here:

Thanks you!


Difficulty level
Normal (likely a few hours)

Event Timeline

Maybe make the tls cert-file and key-file complete optional, this way other advanced options can be used for openvpn by using "openvpn-option", such as pkcs11 support mentioned in T56

Although, adding proper support for password authentication would ofcourse be much cleaner.

syncer claimed this task.
syncer added a subscriber: syncer.

user\pass auth added