| Anonymous | Login | 2024-12-21 23:50 MST |
| Main | My View | View Issues | Change Log | Roadmap | Repositories |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | ||||
| 0013611 | ClearOS | app-openvpn - OpenVPN | public | 2017-03-09 11:50 | 2020-03-27 08:23 | ||||
| Reporter | NickH | ||||||||
| Assigned To | |||||||||
| Priority | normal | Severity | feature | Reproducibility | always | ||||
| Status | closed | Resolution | suspended | ||||||
| Platform | OS | OS Version | |||||||
| Product Version | 7.3.0 | ||||||||
| Target Version | Fixed in Version | ||||||||
| Summary | 0013611: App-openvpn provides no way of disabling certificates | ||||||||
| Description | OpenVPN provides a certificate security model such that the server never looks at the client certificate or private key when authenticating. Some users disable user/pass access so OpenVPN can run as a service in Windows, so the client automatically connects to ClearOS when it boots up. In this condition, the only way to disable client access us to configure openvpn to use a CRL. ClearOS needs to provide support for this, both in the Certificates app so deleting a certificate makes an entry in the CRL, and in app-users so deleting a user deletes the certificates and creates the entry in the CRL. The basic clients.conf also needs modifying to use the CRL. There is more discussion and links to openVPN in the following thread: https://www.clearos.com/clearfoundation/social/community/openvpn-deleted-user-still-able-to-connect# [^] | ||||||||
| Tags | No tags attached. | ||||||||
| Attached Files | |||||||||
 Relationships |
||||||
|
||||||
 Relationships |
|
Notes |
|
|
(0008511) user2 2018-11-05 20:35 |
Since this requires a command line hack, set this to "feature". Note: the "Certificate Manager" app already provides API hooks for revoking certificates. However, the user engine does not take advantage of this feature when a user is deleted. |
|
(0013671) NickH (developer) 2020-03-27 08:23 |
Migrated to https://gitlab.com/clearos/clearfoundation/app-openvpn/-/issues/22 [^] |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2017-03-09 11:50 | NickH | New Issue | |
| 2017-03-09 12:51 | user2 | Assigned To | => user2 |
| 2017-03-09 12:51 | user2 | Status | new => confirmed |
| 2018-11-05 20:35 | user2 | Note Added: 0008511 | |
| 2018-11-05 20:35 | user2 | Severity | major => feature |
| 2018-11-05 20:36 | user2 | Relationship added | related to 0022221 |
| 2018-12-14 12:10 | user2 | Status | confirmed => assigned |
| 2018-12-14 12:10 | user2 | Assigned To | user2 => tracker |
| 2020-03-27 08:23 | NickH | Note Added: 0013671 | |
| 2020-03-27 08:23 | NickH | Status | assigned => closed |
| 2020-03-27 08:23 | NickH | Assigned To | tracker => |
| 2020-03-27 08:23 | NickH | Resolution | open => suspended |
|
Issue History |