cad
edit usernames
Hello Cad.
Can´t do that wile username is the CN on certificate ;)( i´m sure you know that.!!) , maybe username can not be associated to certificates CN , i´m using a php site to monitor connected users , and it´s only show the CN name as an identifier..., don´t know if can grab another info inside certificate , anyway, openvpn use CN as a Identifier and CCD based on the CN, you have a chalenge to think about a solution :)
This question and solution correlate to LDAP integration, because username needs to be common between VPN and LDAP to be more simple, or can have another input on users profile to identify this login information... anyway, just toughts about :) , i can test this in future, I have Radius, SLDAP on a ACtive Directory, i´m glad to help if you need.!
Todays OVPM option to use the username as a Common Name on Certificate is Nice.!
It Helps to look at the connected users and search for someone by name you defined by yourself.!
in addition, i have the Public IP and Internal IP , data usage..., connected since... , IP´s are very usefull, both(Public and private)
Today i use the option below on openvpn servers.conf to start openvpn management..
management 127.0.0.1 8888 (any tcp port you want)
I do a telnet on this localhost 8888 , use status command to list users, grab the CN and run a " kill CN" , because i disable the option to kill conection on the php site, i didn´t have user control on this option, and another area needs to watch who is conected for service control purpose and i can´t allow this people to kill a conection :). If only admin´s can kill conections would be nice..!!
Just try to show some cenarios to help your toughts..! This project is becoming so great.., thanks to you.!
Regards Cya Ozburn
@ozburn
Current plan is to implement #39, #40 and #5. Of course, these metrics would be available via an endpoint on the OVPM REST API. I expect end users of the OVPM not to directly interfere with OpenVPN process which is supervised by ovpmd but use the REST API instead.