Comments (7)
I really can't find any documentation on how to add configuration to this as.conf
Correct. AS was nether tested. And I don't have any experience in AS. Sorry.
management AS_MANAGEMENT_IP AS_MANAGEMENT_PORT /usr/local/openvpn_as/etc/password.txt
management-hold
management-client-auth
Is correct for an OpenVPN server config file, but I have no idea how to configure it on AS.
from openvpn-auth-oauth2.
that can support OpenVPN Access Server.
Since the Access Server already provides SSO capabilities, future support for AS is not planned. Sorry.
from openvpn-auth-oauth2.
The error
Failed to add match 'openvpn-auth-oauth2': Invalid argument
seems more systemd related. Because I find some issues around Failed to add match 'xxx': Invalid argument
Can you run openvpn-auth-oauth2 from a shell, without using systemd?
In general, AS server is untested and I'm not sure if the authentication from openvpn-auth-oauth2 conflicts with AS server one. I also have no idea, if OVPN management interface is availible on AS.
from openvpn-auth-oauth2.
Hi @jkroepke
Thank you so much for your quick response. After running: #/usr/bin/openvpn-auth-oauth2
I got the following error:
error loading config: validation error: http.secret is required
But in configuration file /etc/sysconfig/openvpn-auth-oauth2, I defined variable CONFIG_HTTP_SECRET.
If you haven't already checked on the AS server, could you plan to investigate and develop a plugin for the AS server? I really need this plugin for the AS server.
from openvpn-auth-oauth2.
The connection between /etc/sysconfig/openvpn-auth-oauth2 and /usr/bin/openvpn-auth-oauth2 is done by systemd. The file is ignored, if systemd is not used for the start.
For now, you have to pass the config manually with the env command
env CONFIG_HTTP_SECRET=abc CONFIG_XXX=YYY CONFIG_XXX=YYY CONFIG_XXX=YYY CONFIG_XXX=YYY /usr/bin/openvpn-auth-oauth2
from openvpn-auth-oauth2.
It seems like I have successfully executed it:
/usr/bin/openvpn-auth-oauth2
msg="discover oidc auto configuration with provider generic for issuer https://login.microsoftonline.com/AZURE-TENANT-ID/oauth2/v2.0/authorize"
msg="newProviderWithDiscovery: http status not ok: 404 Not Found "
I will need to double-check the value of CONFIG_OAUTH2_ISSUER.
Furthermore, I don't know how to connect openvpn-auth-oauth2 with openvpn-as server. I added the following lines into configuration file of AS server (/usr/local/openvpn_as/etc/as.conf):
management AS_MANAGEMENT_IP AS_MANAGEMENT_PORT /usr/local/openvpn_as/etc/password.txt
management-hold
management-client-auth
Is this correct? I really can't find any documentation on how to add configuration to this as.conf file from OpenVPN Access Server documentation.
from openvpn-auth-oauth2.
Thank you so much for your help @jkroepke
Hope you will release a new version that can support OpenVPN Access Server.
Wish you have a good day.
from openvpn-auth-oauth2.
Related Issues (20)
- No auth after openvpn SIGHUP HOT 8
- Layout changed HOT 1
- validate.common-name fails with "openvpn client is empty" HOT 2
- Please support/move to plugin HOT 1
- [Google] Refresh token HOT 4
- Status of Keycloak Support? HOT 1
- v1.16.0-rc.2: openvpn-auth-oauth2.service: Failed with result 'core-dump'. HOT 6
- v1.16.0-rc.2: provider `google` not recognised in client.yaml HOT 3
- Google oAuth not working HOT 1
- IOS OpenVPN Connect will disconnect after lock screen for about 20 seconds and can not auto re-connect after unlock HOT 38
- validate.common-name is is case-sensitive
- A possible chan deadlock with `commandResponseCh` HOT 9
- Refactor Google Teams sync HOT 3
- No information returned from Google oAuth HOT 6
- [HELP WANTED] Implement username override in OpenVPN [clang coding]
- When trying to use groups in plugin, having PANIC HOT 14
- openvpn gui still asks for username/password even with auth-user-pass-optional HOT 5
- Reverse proxy with apache HOT 3
- OpenVPN Service NOT start HOT 16
- Minor Issue with Makefile HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openvpn-auth-oauth2.