auth-user-pass-verify /etc/openvpn/checkpsw.sh via-env #指定用户认证脚本 username-as-common-name verify-client-cert none 4、编写用户认证脚本文件 (脚本是由openvpn官网提供) vim /etc/openvpn/checkpsw.sh #!/bin/sh ### # checkpsw.sh (C) 2004 Mathias Sundman # This script will authenticate...
auth-user-pass-verify "/etc/openvpn/server/user/checkpsw.sh" via-env verify-client-cert none username-as-common-name client-to-client duplicate-cn #配置网络信息 #server 10.8.0.0 255.255.255.0 server-bridge 10.24.11.254 255.255.255.0 10.24.11.10 10.24.11.190 client-to-client push "dhcp-option ...
verify-client-cert none 客户端 client.ovpn #注释这两行 ;cert admin.crt ;key admin.key remote-cert-tls server tls-auth ta.key 1 cipher AES-256-GCM comp-lzo verb 3 #加入这一行,使用用户名密码登录openvpn服务器 auth-user-pass 重启后连接 小结 使用账户和密码登录之后,其中 client.crt和client....
在服务端配置添加认证插件 verify-client-cert noneusername-as-common-nameplugin /usr/local/openvpn/lib/openvpn/plugins/openvpn-plugin-auth-pam.so openvpn 三、客户端配置 3.1 下载客户端程序: 从https:///lang13002/openvpn-portable/repository/archive/v1.0下载程序,并安装网卡驱动; 3.2 安装驱动: 运行o...
auth-user-pass-verify /etc/openvpn/checkpsw.sh via-env # 这里非常重要,如果你启用了该选项,你就只需要通过用户名和密码登录了 # 但是如果你注释了该选项,那你必须使用 用户名 + 密码 + 证书 才能登录成功,缺一不可。 ;verify-client-cert none ...
auth-user-pass-verify /etc/openvpn/server/user/checkpsw.sh via-env script-security 3 verify-client-cert none username-as-common-name client-to-client #duplicate-cn #配置网络信息 server 10.8.0.0 255.255.255.0 push "dhcp-option DNS 223.5.5.5" ...
To fix this issue you need to open nano /etc/openvpn/server.conf and got to line number 83. You will find verify-client-cert none. delete this line and insert client-cert-not-required and then save that file. sudo systemctl start openvpn...
client-to-client keepalive10120tls-auth/etc/openvpn/pki/ta.key0# This file is secret cipherAES-256-CBCcomp-lzo user nobody group nobody auth-user-pass-verify/etc/openvpn/checkpsw.sh via-env script-security3verify-client-cert none
--client-cert-not-required is deprecated in OpenVPN 2.4 and will be removed in v2.5. Use --verify-client-cert none for a functional equivalent. --ns-cert-type is deprecated in OpenVPN 2.3.18 and v2.4. It will be removed in v2.5. Use the far better --remote-cert-tls option which...
verify-client-cert none systemctl restart openvpn 1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 9.4 修改客户端配置文件 wxd.ovpn文件的内容如下: #指定当前VPN是客户端client#使用tun隧道传输协议dev tun#使用tcp协议传输数据proto tcp#OpenVPN服务器IP地址+端口号remote192.168.131.141194#断线自动重新连接,在网...