How to customize and extend your OpenVPN installation.
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
gabell
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Jun 08, 2011 1:20 pm
- Location: St. Petersburg, Russia
Post
by gabell » Wed Jun 08, 2011 1:42 pm
Hi, folks
Sorry if it's not right place for this topic.
I use client-connect script in my configuration which checks user's profile. It works good and send AUTH_FAILED message to client if something's wrong. Problem is the openvpn gui do not exit on this message and password dialog appears again. Is there any chance to solve this.
Code: Select all
Wed Jun 08 17:33:22 2011 SENT CONTROL [spb2.speechpro.com]: 'PUSH_REQUEST' (status=1)
Wed Jun 08 17:33:22 2011 AUTH: Received AUTH_FAILED control message
Wed Jun 08 17:33:22 2011 SIGTERM received, sending exit notification to peer
Wed Jun 08 17:33:23 2011 TCP/UDP: Closing socket
Wed Jun 08 17:33:23 2011 SIGTERM[soft,exit-with-notification] received, process exiting
Wed Jun 08 17:33:23 2011 OpenVPN 2.1.3 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Aug 20 2010
-
george
- Forum Team
- Posts: 117
- Joined: Tue Jun 09, 2009 4:25 pm
- Location: St. Louis, MO USA
Post
by george » Wed Jun 08, 2011 2:07 pm
I believe this is the desired behavior, so a user can have a second chance at entering their username and password.
-
gabell
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Jun 08, 2011 1:20 pm
- Location: St. Petersburg, Russia
Post
by gabell » Wed Jun 08, 2011 2:27 pm
george wrote:I believe this is the desired behavior, so a user can have a second chance at entering their username and password.
I use tls authentication instead of username-password auth. I meant password for private key when I say "password dialog". And I get error message box when password incorrect. Why openvpn gui don't give a second chance in this case?
-
janjust
- Forum Team
- Posts: 2703
- Joined: Fri Aug 20, 2010 2:57 pm
- Location: Amsterdam
-
Contact:
Post
by janjust » Wed Jun 08, 2011 3:08 pm
the message
Code: Select all
AUTH: Received AUTH_FAILED control message
is coming from the server when the wrong username/password is specified; it has nothing to do with TLS authentication; the GUI does allow you to enter the private key password multiple times if you start it using
Code: Select all
oepnvpn-gui.exe --passphrase_attempts 4
this does not seem to work well with openvpn 2.2 , however.
-
gabell
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Jun 08, 2011 1:20 pm
- Location: St. Petersburg, Russia
Post
by gabell » Wed Jun 08, 2011 3:50 pm
janjust wrote:the message
Code: Select all
AUTH: Received AUTH_FAILED control message
is coming from the server when the wrong username/password is specified;
or client-connect script returns non zero like in my case. Auth failed on server side, and no matter what user'll enter in password field, it's useless.
But users don't khow anything about server side. They think password's wrong and enter it again and again. Fortunately it's only 3 times
