Multiple users/passwords?
Posted: Fri Jul 29, 2022 1:30 am
I'm starting to think it's probably important for each of my users to have separate usernames and passwords to log into the OpenVPN server. After all, if someone leaves my team, I don't want them having VPN access and don't want this being distributed since it seems like this file can work for everyone.
I see how to do the auth-verify but I am trying to figure out how to do this so that I can create a login for each user. It's not that scalable to create different ovpn files for each person. And if I just add auth-user-pass without a username and password, then the server doesn't let them log in.
How do I create usernames/passwords on the server side that I can freely delete to remove potential security risk? With PAM, does that mean they need an account on my system? But they could still freely distribute the .ovpn, no?
Sorry if it's a dumb question - I've reviewed the information but I can't figure it out.
I see how to do the auth-verify but I am trying to figure out how to do this so that I can create a login for each user. It's not that scalable to create different ovpn files for each person. And if I just add auth-user-pass without a username and password, then the server doesn't let them log in.
How do I create usernames/passwords on the server side that I can freely delete to remove potential security risk? With PAM, does that mean they need an account on my system? But they could still freely distribute the .ovpn, no?
Sorry if it's a dumb question - I've reviewed the information but I can't figure it out.