Dual authentication with OpenVPN
Posted: Mon Jun 25, 2018 12:39 pm
Hi,
I am trying to configure OpenVPN to implement 2 factor authentication. First Factor will be LDAP Directory, Second Factor will be Safenet soft token using RADIUS
Tested both of them separately i.e Using Authentication methods LDAP & then using RADIUS, it worked.
Now trying to implement LDAP + RADIUS authentication. User should get authenticated via LDAP username and password, once successfull it should authenticate user against a soft token (a 6 digit pin which is generated via Safenet Mobile App(MobilePass+))
I am aware that we can use PostAuth Python scripts to achieve this (https://docs.openvpn.net/configuration/ ... th_scripts)
I hope this is a very common use case, Can you point to a URL or a sample script that will help achieve this.
Thanks
I am trying to configure OpenVPN to implement 2 factor authentication. First Factor will be LDAP Directory, Second Factor will be Safenet soft token using RADIUS
Tested both of them separately i.e Using Authentication methods LDAP & then using RADIUS, it worked.
Now trying to implement LDAP + RADIUS authentication. User should get authenticated via LDAP username and password, once successfull it should authenticate user against a soft token (a 6 digit pin which is generated via Safenet Mobile App(MobilePass+))
I am aware that we can use PostAuth Python scripts to achieve this (https://docs.openvpn.net/configuration/ ... th_scripts)
I hope this is a very common use case, Can you point to a URL or a sample script that will help achieve this.
Thanks