OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

authentication via cert

https://forums.openvpn.net/viewtopic.php?t=8677

Page 1 of 1

authentication via cert

Posted: Fri Aug 19, 2011 2:44 pm
by zouminski9
Hello,

i set an OpenVPn server on linux. I create some client. When i create server, i fill these informations on subject :
C, O, OU, CN.

I if i well understand ma y installation, all clients,who got certs created by an unique and same Ca(than server) CA succeed connecting to the VPN server ?

Is it possible to filter clients who are created by the same CA but with differents OU (organisation unit ) for example ?
How can i do that ?

Sorry for my english.

Re: authentication via cert

Posted: Fri Aug 19, 2011 3:02 pm
by george
Is it possible to filter clients who are created by the same CA but with differents OU (organisation unit ) for example ?
How can i do that ?
If by filter, you mean give restrict them to an IP address and/or restrict thier access, then yes you can.

Re: authentication via cert

Posted: Sat Aug 20, 2011 8:50 pm
by janjust
you can restrict access for certain certificates using a 'tls-verify' script. Read the manual page for details. A sample 'tls-verify' script is, of course, also listed in my book :mrgreen:
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/