[eduVPN-deploy] 2FA plugin for OpenVPN
François Kooman
fkooman at tuxed.net
Thu Apr 5 11:00:20 CEST 2018
Hi,
There is a plugin available for OpenVPN to optimize verifying second
factors. By default, the OpenVPN process will block when verifying the
TOTP or YubiKey OTP, make it impossible for any connected client to
send/receive data at this time. This is obviously bad for performance.
The plugin solves this by verifying the second factor without blocking.
If you have a deployment with many users using 2FA for connecting to the
VPN this is pretty much a MUST have.
This is supported since vpn-server-node 1.0.12 released on 2018-04-05.
Installing the plugin is documented here [1]. It is currently
EXPERIMENTAL as there is no official release of the plugin yet.
Hopefully this can become part of OpenVPN directly at some point in the
future...
Let me know if you have any questions!
Cheers,
François
[1] https://github.com/eduvpn/documentation/blob/master/2FA.md#plugin
More information about the eduVPN-deploy
mailing list