Hi, > > @selva I can't kill the whole client, as I'm doing a duplicate-cn. Hence I > had to kill via IP address and port to pinpoint exactly that user. > > However I have found a secret feature, which it seems you guys weren't aware > of. ;-) > > client-deny 4 0 "Disconnect Now"
client-deny is for failing client authentication, and is supposed to be used when the client is connecting or doing re-auth with --management-client-auth. It may work mid-session, but that's undocumented and could change. The third argument is KID, not PID. Also, the client will receive an AUTH_FAILED leading to restart-- so it will connect right back especially when passwords are cached. Selva _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
