Hi,

On Tue, Aug 27, 2013 at 03:00:04PM +0300, Nikolaos Milas wrote:
> I am using OpenVPN Community openvpn-2.2.2-1.el6.x86_64  on CentOS 6.4 
> x86_64 using two-factor auth, certs and ldap - by calling the ldap plugin:
> 
> plugin /usr/lib64/openvpn/plugin/lib/openvpn-auth-ldap.so 
> /etc/openvpn/auth/ldap.conf
> 
> Is there a way to specify (using a ccd file) that a particular client 
> will authenticate only using certs, effectively disabling the ldap 
> plugin for that client?
> 
> This means that the particular client will use single-factor authentication.

No, as ccd/ (and client-connect etc.) is only read *after* the client 
is authenticated.

If you want that, you need to do that inside the authentication plugin.

gert
-- 
USENET is *not* the non-clickable part of WWW!
                                                           //www.muc.de/~gert/
Gert Doering - Munich, Germany                             g...@greenie.muc.de
fax: +49-89-35655025                        g...@net.informatik.tu-muenchen.de

Attachment: pgp4Z6rviyD2v.pgp
Description: PGP signature

------------------------------------------------------------------------------
Introducing Performance Central, a new site from SourceForge and 
AppDynamics. Performance Central is your source for news, insights, 
analysis and resources for efficient Application Performance Management. 
Visit us today!
http://pubads.g.doubleclick.net/gampad/clk?id=48897511&iu=/4140/ostg.clktrk
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Reply via email to