Hi, On Mon, Mar 24, 2014 at 01:23:47PM -0400, Jason Frisvold wrote: > Eric Crist wrote: > > You can do this pretty easily with client connect scripts. It will involve > > some work on your part. > > So in this case would the ip assignment happen outside of openvpn? Does > openvpn know about the different pools? If you know of any resources I > can look at off-hand, it would help.
OpenVPN wouldn't know - so you need something external that knows about
pools, and will tell openvpn.
> > No other real gotchas. Keep your CA infrastructure safe, and make sure the
> > date/time are correct on your client machines and the system you use to
> > generate the certificates.
>
> Probably going to have to disable the CA piece and go user/pass only.
> Distributing certs to users here is not something that will be remotely
> easy..
Just inline them into the config you create for them:
<cert>
X509 data...
</cert>
<key>
...
</key>
<ca>
X509 data...
...
</ca>
"Here's your OpenVPN profile, all you need is inside this single text file".
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [email protected]
fax: +49-89-35655025 [email protected]
pgpN6iD1sSkhL.pgp
Description: PGP signature
------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/13534_NeoTech
_______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
