If you're distributing client configs, the certs can be embedded. ----- Eric F Crist
On Mar 24, 2014, at 12:23:47, Jason Frisvold <xenoph...@godshell.com> wrote: > Eric Crist wrote: >> You can do this pretty easily with client connect scripts. It will involve >> some work on your part. > > So in this case would the ip assignment happen outside of openvpn? Does > openvpn know about the different pools? If you know of any resources I > can look at off-hand, it would help. > >> No other real gotchas. Keep your CA infrastructure safe, and make sure the >> date/time are correct on your client machines and the system you use to >> generate the certificates. > > Probably going to have to disable the CA piece and go user/pass only. > Distributing certs to users here is not something that will be remotely > easy.. > > -- > --------------------------- > Jason 'XenoPhage' Frisvold > xenoph...@godshell.com > --------------------------- > > "Any sufficiently advanced magic is indistinguishable from technology.\" > - Niven's Inverse of Clarke's Third Law
signature.asc
Description: Message signed with OpenPGP using GPGMail
------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/13534_NeoTech
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
