Page MenuHomeVyOS Platform
Create Task
Maniphest T65

auth-user-pass authentication in OpenVPN
Closed, ResolvedPublic
Actions

Description

Currently VyOS does not support user password authentication, it is possible to make it work using openvpn-options only after commenting out checks in /opt/vyatta/share/perl5/Vyatta/OpenVPN/Config.pm. It would be great if an option was added to the CLI that allows the user to pick between cert based or password based authentication. This mode would bypass the checks for shared-secret-file, tls key, and TLS cert-file as they are not required for auth-user-pass authentication.

More info here:

http://forum.vyos.net/archive/index.php?thread-26487.html

Thanks you!

Details

Difficulty level
Normal (likely a few hours)

Related Objects

Event Timeline

marioeirea created this task.May 11 2016, 8:51 AM
yun added a subscriber: yun.EditedMay 11 2016, 7:46 PM

Maybe make the tls cert-file and key-file complete optional, this way other advanced options can be used for openvpn by using "openvpn-option", such as pkcs11 support mentioned in T56

Although, adding proper support for password authentication would ofcourse be much cleaner.

syncer closed this task as Resolved.Jun 10 2018, 3:42 AM
syncer claimed this task.
syncer added a subscriber: syncer.

user\pass auth added