Hi, On Tue, Aug 27, 2013 at 03:00:04PM +0300, Nikolaos Milas wrote: > I am using OpenVPN Community openvpn-2.2.2-1.el6.x86_64 on CentOS 6.4 > x86_64 using two-factor auth, certs and ldap - by calling the ldap plugin: > > plugin /usr/lib64/openvpn/plugin/lib/openvpn-auth-ldap.so > /etc/openvpn/auth/ldap.conf > > Is there a way to specify (using a ccd file) that a particular client > will authenticate only using certs, effectively disabling the ldap > plugin for that client? > > This means that the particular client will use single-factor authentication.
No, as ccd/ (and client-connect etc.) is only read *after* the client is authenticated. If you want that, you need to do that inside the authentication plugin. gert -- USENET is *not* the non-clickable part of WWW! //www.muc.de/~gert/ Gert Doering - Munich, Germany g...@greenie.muc.de fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
pgp4Z6rviyD2v.pgp
Description: PGP signature
------------------------------------------------------------------------------ Introducing Performance Central, a new site from SourceForge and AppDynamics. Performance Central is your source for news, insights, analysis and resources for efficient Application Performance Management. Visit us today! http://pubads.g.doubleclick.net/gampad/clk?id=48897511&iu=/4140/ostg.clktrk
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users