OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

OpenVPN access server is letting any password auth

https://forums.openvpn.net/viewtopic.php?t=29627

Page 1 of 1

OpenVPN access server is letting any password auth

Posted: Tue Feb 11, 2020 4:57 am
by clags
I have a weird problem -- I am trial'ing the openvpn access server on a centos 7 box. Whether I set the auth to PAM, local, or LDAP, it is letting login with any password. It seems all it is doing is verifying the user exists -- I can't log in to the web portal with a bad username, but as long as the username exists, any password is being accepted.

Re: OpenVPN access server is letting any password auth

Posted: Thu Feb 13, 2020 1:13 pm
by clags
Update - The support team for access server got back to me, this is a bug in 2.8 that is letting any user bind to LDAP. Suggested reverting to 2.7 until a fix is released.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/