OpenVPN Support Forum

I recently enabled the openvpn-auth-pam plugin on my OpenVPN server and and got it working without any issue. Windows clients prompt for username and password as expected. But, Ubuntu clients (which are the majority of my clients) do not ask for the username and only prompts for the password.

Looking at the logs, the Ubuntu systems are sending the local Linux account name that user is logged in as. It is acting like username-as-common-name is turned by default in the Ubuntu client. I do not have it enabled.

Is there any way to get the Ubuntu clients to prompt for username and password?

Client side versions tried: Ubuntu distro's 2.4.7 and OpenVPN's 2.4.11. The server is running 2.4.11.

Client config Thanks
Darrell

It sounds like you are using the NetworkManager app on your ubuntu clients.

Yes I am. I didn't think about that thing getting in the way.

We don't support NM and I don't know how you would configure it to use your choice of username.

I can understand why people want to use it but it has a checkered history .. Personally, I disable it completely.

I was actually able to get the setup to login using the cert common name instead of the local user name which helps.
I changed the server.conf from this to this I haven't had a Windows machine around to try the change. Hopefully they still work ok.

NM is a disaster with Access Server & Cloud service. And last I looked it had a built-in assumption that every tunnel was a full tunnel! Yikes.

It is acting like username-as-common-name is turned by default in the Ubuntu client.

I didn't see any evidence of that, and AFAIK Ubuntu has not baked in any defaults that differ from upstream.

regards, rob0

Once I was made aware by TinCanTech that the NM was getting in the way, I was able to figure out and fix my issue.

Consider this matter closed / solved.

Thanks