User is able to access with files even we have deleted all files from Vpn and CA instance.
Posted: Fri Mar 15, 2024 12:23 pm
A potential security concern has been identified with our OpenVPN server.
A user possessed an OpenVPN configuration file (xyz.ovpn) that granted user access.
In an attempt to revoke the user's access, all their associated files were deleted from both the OpenVPN server and the Certificate Authority (CA) instances.
Surprisingly, the user able to connect to the OpenVPN application using the original xyz.ovpn file.
This situation indicates that deleting the user's files might not be an effective method to completely block their access.
We do not have an OpenVPN GUI interface, what is the correct way to delete an OpenVPN user account, so that the user will no longer be able to log in?
Also, we try to create a user with exact same name and different password. Still we are able to connect as the earlier user that we deleted. What are we missing in our steps to delete a user? Any modifications required in our OpenVPN setup?
We don't want user to be access with .ovpn once its files are removed from the VPN and ca instance
Can you please help us to investigate further to determine the root cause and fix this.
A user possessed an OpenVPN configuration file (xyz.ovpn) that granted user access.
In an attempt to revoke the user's access, all their associated files were deleted from both the OpenVPN server and the Certificate Authority (CA) instances.
Surprisingly, the user able to connect to the OpenVPN application using the original xyz.ovpn file.
This situation indicates that deleting the user's files might not be an effective method to completely block their access.
We do not have an OpenVPN GUI interface, what is the correct way to delete an OpenVPN user account, so that the user will no longer be able to log in?
Also, we try to create a user with exact same name and different password. Still we are able to connect as the earlier user that we deleted. What are we missing in our steps to delete a user? Any modifications required in our OpenVPN setup?
We don't want user to be access with .ovpn once its files are removed from the VPN and ca instance
Can you please help us to investigate further to determine the root cause and fix this.