OpenVPN on linux as client to Cisco VPN using MS 2FA
Posted: Wed Mar 16, 2022 8:02 pm
I've been usinng openconnect (OpenVPN client on Ubuntu) for many years without a hitch, in order to connect my Ubuntu server with the university's network. On the university side, thy use a Cisco VPN server. Now they want to enable what they call two step authentication. This requires sending a tokent (OTP, SMS code, etc) after entering the name and password.
However, I could not get this to work - mainly because I lack the knowledge on how this is to be handled by openVPN. I can use the google OTP generator, or even better, the MicroSoft OTP generator (which is recommended) to generate the token, or I can have one sent by SMS.
But I just can't find any step by step instructions on what to do to get that working. I know from the manual that openconnect has the --token-mode and --token-secret options, but I can't get that properly configured.
Has anyone achieved this and is willing to share his/her knowledge?
Thanks in advance
Robert
However, I could not get this to work - mainly because I lack the knowledge on how this is to be handled by openVPN. I can use the google OTP generator, or even better, the MicroSoft OTP generator (which is recommended) to generate the token, or I can have one sent by SMS.
But I just can't find any step by step instructions on what to do to get that working. I know from the manual that openconnect has the --token-mode and --token-secret options, but I can't get that properly configured.
Has anyone achieved this and is willing to share his/her knowledge?
Thanks in advance
Robert