Public bug reported: Server: openvpn 2.4.7-1 (Raspbian 10.2) Client: ubuntu 19.10 (openvpn: 2.4.7-1ubuntu2, network-manager-openvpn: 1.8.10-1)
My server is using google authenticator via pam as second factor beyond client certificates. After 1 hour (which is the default value of reneg-sec) my client tries to reauth to the server and the authentication fails. Expected behavior: client should ask for pass(token) after unsuccessful auth and/or client should have an option not to cache password and ask for it before trying to reauth. Workaround: set reneg-sec to 0 ** Affects: network-manager-openvpn (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to network-manager-openvpn in Ubuntu. https://bugs.launchpad.net/bugs/1860114 Title: Reauthentication fail with 2fa Status in network-manager-openvpn package in Ubuntu: New Bug description: Server: openvpn 2.4.7-1 (Raspbian 10.2) Client: ubuntu 19.10 (openvpn: 2.4.7-1ubuntu2, network-manager-openvpn: 1.8.10-1) My server is using google authenticator via pam as second factor beyond client certificates. After 1 hour (which is the default value of reneg-sec) my client tries to reauth to the server and the authentication fails. Expected behavior: client should ask for pass(token) after unsuccessful auth and/or client should have an option not to cache password and ask for it before trying to reauth. Workaround: set reneg-sec to 0 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/network-manager-openvpn/+bug/1860114/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp