What is "Require user permissions record for VPN access."?

Business solution to host your own OpenVPN server with web management interface and bundled clients.
Post Reply
User avatar
Danran
OpenVPN User
Posts: 28
Joined: Tue Jun 29, 2021 9:21 am

What is "Require user permissions record for VPN access."?

Post by Danran » Tue Aug 17, 2021 11:32 am

Very simple question. In the CWS interface on openvpn-as, under

Code: Select all

User Management>User Permissions
there is an optional switch labeled
Require user permissions record for VPN access
.
What exactly does this featuer/button do? Could someone please explain this?

Thanks!

User avatar
vnpenguin
OpenVpn Newbie
Posts: 14
Joined: Sun Dec 06, 2015 7:12 am
Location: Belgium

Re: What is "Require user permissions record for VPN access."?

Post by vnpenguin » Tue Nov 02, 2021 4:23 pm

I have the same question.

User avatar
openvpn_inc
OpenVPN Inc.
Posts: 1333
Joined: Tue Feb 16, 2021 10:41 am

Re: What is "Require user permissions record for VPN access."?

Post by openvpn_inc » Fri Nov 05, 2021 10:43 am

Hello Danran and vnpenguin,

If you're using an external authentication like LDAP or RADIUS or PAM, you might not want all accounts that are valid there to be able to log in via VPN. What you can do then is enable that option. Then only users that are added to the "User Permissions" table by the OpenVPN Access Server administrator are actually able to login. If you were to try to login with a user that is valid in the external authentication system, but it's not already listed in the Access Server, it would simply be denied access at the VPN server.

So, in other words, require a user permissions record for VPN access.

Kind regards,
Johan
Image OpenVPN Inc.
Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support

Post Reply