[OpenVPN home]	[Date Prev]	[Date Index]	[Date Next]
[OpenVPN mailing lists]	[Thread Prev]	[Thread Index]	[Thread Next]

Re: [Openvpn-users] How to avoid IP duplication?

Subject: Re: [Openvpn-users] How to avoid IP duplication?
From: Charles Duffy <cduffy@xxxxxxxxxxx>
Date: Wed, 01 Nov 2006 11:24:22 -0600

Monty Ree wrote:
> I have used OpenVPN server(linux) and Windows (client) using same cert 
> file.

First, don't use shared certificates. They're bad for security, bad for
manageability (as you're presently finding out), and all around not a
best-practices approach to the problem.

Second -- if you *must* use shared certificates (which you absolutely
shouldn't do), use auth-user-pass with username-as-common-name such that
you can use a client-config-dir based on the username rather than the
certificate.

______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users

References:
- [Openvpn-users] How to avoid IP duplication?
  - From: Monty Ree

Prev by Date: Re: [Openvpn-users] OpenVPN 2.1_rc1 released
Next by Date: [Openvpn-users] Failover with preference [was Re: Notion of weight or priority]
Previous by thread: [Openvpn-users] How to avoid IP duplication?
Next by thread: Re: [Openvpn-users] OpenVPN Roadmap
Index(es):
- Date
- Thread