Page 1 of 1

MFA for openvpn admin user when using LDAP & DUO?

Posted: Mon May 09, 2022 12:27 pm
by stech4114
Is there a way to enable MFA for the openvpn admin user when using DUO for users via LDAP & AD. The openvpn admin account is local. Thank you.

Re: MFA for openvpn admin user when using LDAP & DUO?

Posted: Mon May 09, 2022 3:07 pm
by openvpn_inc
Hello stech4114,

Yes. Same way as all the other users. If you use an Access Server version 2.10 or higher. And remove the openvpn account from as.conf and make it a 'normal' account instead of a bootstrap account in as.conf.

Kind regards,
Johan

Re: MFA for openvpn admin user when using LDAP & DUO?

Posted: Mon May 09, 2022 5:02 pm
by stech4114
openvpn_inc wrote:
Mon May 09, 2022 3:07 pm
Hello stech4114,

Yes. Same way as all the other users. If you use an Access Server version 2.10 or higher. And remove the openvpn account from as.conf and make it a 'normal' account instead of a bootstrap account in as.conf.

Kind regards,
Johan
Can you elaborate on this please?

Re: MFA for openvpn admin user when using LDAP & DUO?

Posted: Tue May 10, 2022 4:43 pm
by openvpn_inc
Hey stech4114,

There's a lot of information to convey, so probably better if you read the documentation section here titled "Secure the openvpn administrative user account" first:
https://openvpn.net/vpn-server-resource ... er-account

You should be able to find all you need there. If not let me know which part you need clarification on.

Kind regards,
Johan