Bernhard.Linz/openvpn-install
1
0
Fork 0
mirror of https://github.com/angristan/openvpn-install.git synced 2024-11-14 21:09:03 +01:00
Code Issues Projects Releases Wiki Activity

Add auth-gen-token server option

Browse Source 
We use auth-nocache option so every hour a renegotiation can cause custom configurations to fail because of a necessary input of the credentials. auth-gen-token option prevents this.

From the OpenVPN manual:
"The purpose of this is to enable two factor authentication methods, such as HOTP or TOTP, to be used without needing to retrieve a new OTP code each time the connection is renegotiated. Another use case is to cache authentication data on the client without needing to have the users password cached in memory during the life time of the session."
This commit is contained in:
randomshell 2020-05-07 20:50:05 +00:00 committed by GitHub
parent 5e2e67f78d
commit 875cc26c3d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
openvpn-install.sh
View File

@ -890,6 +890,7 @@ ncp-ciphers $CIPHER
tls-server
tls-version-min 1.2
tls-cipher $CC_CIPHER
auth-gen-token
client-config-dir /etc/openvpn/ccd
status /var/log/openvpn/status.log
verb 3" >>/etc/openvpn/server.conf