Page 1 of 1
passwordless openvpn client
Posted: Fri Jan 08, 2016 6:31 pm
by quattrolinux
openvpn works fine with default user/password authentication.
are there instructions/samples for certificate based passwordless authentication?
creating user with "Individual Certificate Authentication" and including that certificate/private key into vpnserver generated sample opevpn file resulted in
AUTH: Received control message: AUTH_FAILED
Re: passwordless openvpn client
Posted: Thu Jan 21, 2016 6:57 am
by thisjun
SoftEther VPN doesn't support certification auth on OpenVPN.
Re: passwordless openvpn client
Posted: Tue Jun 14, 2016 5:25 am
by shorty1483
thisjun wrote:
> SoftEther VPN doesn't support certification auth on OpenVPN.
Any mid term plans to change that m8?
Re: passwordless openvpn client
Posted: Thu Jun 16, 2016 2:57 am
by erkwok
shorty1483 wrote:
> thisjun wrote:
> > SoftEther VPN doesn't support certification auth on OpenVPN.
>
> Any mid term plans to change that m8?
I saw this in 2014
We are considering to implement the certificate authenticaion on OpenVPN protocol in recent future.
https://github.com/SoftEtherVPN/SoftEtherVPN/issues/55
Re: passwordless openvpn client
Posted: Thu Jun 16, 2016 7:52 am
by shorty1483
erkwok wrote:
> shorty1483 wrote:
> > thisjun wrote:
> > > SoftEther VPN doesn't support certification auth on OpenVPN.
> >
> > Any mid term plans to change that m8?
>
> I saw this in 2014
> We are considering to implement the certificate authenticaion on OpenVPN protocol in
> recent future.
>
>
https://github.com/SoftEtherVPN/SoftEtherVPN/issues/55
It's a mess, because if the security mechanisms of softether would incorporate the actual values of OpenVPN, it would be a rock stable solution in combination with the great management of Softether.
- HMAC auth option (SHA256, SHA512)
- tls-cipher restriction
- tls-auth with static key
- upgrade in general to TLS 1.2