We are a traditionally a Cisco shop, and use Cisco AnyConnect for mobile VPN access.
We've been trialing OpenVPN and generally like it, but we have one question on mobile VPN access (for laptop users for example).
With Cisco AnyConnect, the user just needs the hostname to connect to (eg. vpn.company.com) and a user name and password. There is no need to give them a TLS Key file or TLS crt file. The Cisco AnyConnect client does check the certificate presented by the VPN server to ensure it's valid and matches the host name the user is connecting to (vpn.company.com).
Is there any way to setup OpenVPN in a similar method? Where the user just enters the URL into OpenVPN and then their user name and password? Or where we can ONLY give them a config file and not have to give them the .crt and .key files?
Thanks!
Sean
Client VPN without static key or client cert?
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
slair
- OpenVpn Newbie
- Posts: 1
- Joined: Tue Feb 20, 2018 4:16 pm
-
tonyppe
- OpenVpn Newbie
- Posts: 3
- Joined: Tue May 22, 2018 1:46 am
Re: Client VPN without static key or client cert?
Looks like this isn't possible? I just asked a similar question. I am still searching for the answers around the web and the documentation here.