OpenSolaris authentication issues
Posted: Sun Jan 03, 2010 7:04 am
I have installed OpenVPN based along the following guide:
http://blogs.reucon.com/srt/2008/12/17/ ... 08_11.html
Everything is setup correctly with the tun0 interface. I used the 2.1.1 source to build:
root@opensolaris:~# ifconfig tun0
tun0: flags=10008d0<POINTOPOINT,RUNNING,NOARP,MULTICAST,IPv4> mtu 1500 index 3
inet 0.0.0.0 --> 0.0.0.0 netmask 0
ether 2:0:0:0:0:0
root@opensolaris:/usr/local/src/openvpn-2.1.1# /usr/local/sbin/openvpn --version
OpenVPN 2.1.1 i386-pc-solaris2.11 [SSL] [LZO2] built on Jan 2 2010
Originally developed by James Yonan
Copyright (C) 2002-2009 OpenVPN Technologies, Inc. <sales@openvpn.net>
Authentication keeps failing with:
Jan 2 23:03:08 opensolaris openvpn[27952]: [ID 583609 daemon.notice] [vpn.mycompany.com] Peer Connection Initiated with xxx.xxx.xxx.xxx:1194
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] SENT CONTROL [vpn.mycompany.com]: 'PUSH_REQUEST' (status=1)
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] AUTH: Received AUTH_FAILED control message
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] TCP/UDP: Closing socket
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] SIGTERM[soft,auth-failure] received, process exiting
I am using a configuration file supplied by my company and it works fine with Win7/Linux. The Linux version I use successfully:
OpenVPN 2.1_rc18 x86_64-suse-linux [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 24 2009
Developed by James Yonan
Copyright (C) 2002-2009 OpenVPN Technologies, Inc. <sales@openvpn.net>
I have tried building 2.1_rc18 and get the same results. It seems that my OpenSolaris build lacks "[EPOLL] [PKCS11] " support. I've tried building with PKCS11 support but it doesn't seem to take. EPOLL shouldn't matter on Solaris and PKCS11 is included by default looking at the configure.ac file (I think).
When start the damon I get the same password prompt:
root@opensolaris:/usr/local/src/# /usr/local/sbin/openvpn --daemon --writepid /tmp/openvpn.pid --config /etc/openvpn/mycompany-vpn.conf --cd /etc/openvpn/
Enter Auth Username:username
Enter Auth Password:
Input the same password and always and it fails with above error. Is my problem server or client side here?
Any help is appreciated. Thx in advance!
http://blogs.reucon.com/srt/2008/12/17/ ... 08_11.html
Everything is setup correctly with the tun0 interface. I used the 2.1.1 source to build:
root@opensolaris:~# ifconfig tun0
tun0: flags=10008d0<POINTOPOINT,RUNNING,NOARP,MULTICAST,IPv4> mtu 1500 index 3
inet 0.0.0.0 --> 0.0.0.0 netmask 0
ether 2:0:0:0:0:0
root@opensolaris:/usr/local/src/openvpn-2.1.1# /usr/local/sbin/openvpn --version
OpenVPN 2.1.1 i386-pc-solaris2.11 [SSL] [LZO2] built on Jan 2 2010
Originally developed by James Yonan
Copyright (C) 2002-2009 OpenVPN Technologies, Inc. <sales@openvpn.net>
Authentication keeps failing with:
Jan 2 23:03:08 opensolaris openvpn[27952]: [ID 583609 daemon.notice] [vpn.mycompany.com] Peer Connection Initiated with xxx.xxx.xxx.xxx:1194
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] SENT CONTROL [vpn.mycompany.com]: 'PUSH_REQUEST' (status=1)
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] AUTH: Received AUTH_FAILED control message
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] TCP/UDP: Closing socket
Jan 2 23:03:10 opensolaris openvpn[27952]: [ID 583609 daemon.notice] SIGTERM[soft,auth-failure] received, process exiting
I am using a configuration file supplied by my company and it works fine with Win7/Linux. The Linux version I use successfully:
OpenVPN 2.1_rc18 x86_64-suse-linux [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 24 2009
Developed by James Yonan
Copyright (C) 2002-2009 OpenVPN Technologies, Inc. <sales@openvpn.net>
I have tried building 2.1_rc18 and get the same results. It seems that my OpenSolaris build lacks "[EPOLL] [PKCS11] " support. I've tried building with PKCS11 support but it doesn't seem to take. EPOLL shouldn't matter on Solaris and PKCS11 is included by default looking at the configure.ac file (I think).
When start the damon I get the same password prompt:
root@opensolaris:/usr/local/src/# /usr/local/sbin/openvpn --daemon --writepid /tmp/openvpn.pid --config /etc/openvpn/mycompany-vpn.conf --cd /etc/openvpn/
Enter Auth Username:username
Enter Auth Password:
Input the same password and always and it fails with above error. Is my problem server or client side here?
Any help is appreciated. Thx in advance!