Page 1 of 1
What is "Require user permissions record for VPN access."?
Posted: Tue Aug 17, 2021 11:32 am
by Danran
Very simple question. In the CWS interface on openvpn-as, under
there is an optional switch labeled
Require user permissions record for VPN access
.
What exactly does this featuer/button do? Could someone please explain this?
Thanks!
Re: What is "Require user permissions record for VPN access."?
Posted: Tue Nov 02, 2021 4:23 pm
by vnpenguin
I have the same question.
Re: What is "Require user permissions record for VPN access."?
Posted: Fri Nov 05, 2021 10:43 am
by openvpn_inc
Hello Danran and vnpenguin,
If you're using an external authentication like LDAP or RADIUS or PAM, you might not want all accounts that are valid there to be able to log in via VPN. What you can do then is enable that option. Then only users that are added to the "User Permissions" table by the OpenVPN Access Server administrator are actually able to login. If you were to try to login with a user that is valid in the external authentication system, but it's not already listed in the Access Server, it would simply be denied access at the VPN server.
So, in other words, require a user permissions record for VPN access.
Kind regards,
Johan