There is 2 approaches for this. One is tu use Brane F. Gracnar's addon :
<http://frost.ath.cx/software/openvpn_auth/> http://frost.ath.cx/software/openvpn_auth/ Another is to use Ralf Lübben's Radius plugin and delegate every backend search to the radius server. I, personnally, prefer solution 2, however it might not cope with all your needs yet: for instance more work has to be done on the radius dictionary so that all client configuration push options are supported (I need a little more time for this). For more info see: http://www.nongnu.org/radiusplugin/ HTH, Thibault -----Message d'origine----- De : openvpn-devel-boun...@lists.sourceforge.net [mailto:openvpn-devel-boun...@lists.sourceforge.net] De la part de Hisham Aziz Envoyé : jeudi 31 mai 2007 22:20 À : openvpn-devel@lists.sourceforge.net Objet : *****SPAM***** [Openvpn-devel] OPENVPN with OPENLDAP Hi... Im just starting out with Openvpn, recently figured out how to create a tunnel connection between two machines. Now im wondering if i can use openvpn to connect and authenticate with an LDAP and query it to find certain objects with certain attribute using some sort of script. Basically Im asking here is in a typical client.conf file for a OpenVpn client where would I need to execute such a script to query the LDAP database and also what kind of script is best suited ( Perl, Python , SH, .bat ). SO the questions are how do i do this and where in the file do i do this? Here is my client.ovpn file. Obv it has to be changed, i was using this for making a simple server/client tunnel with another machine using certs and keys on my etoken smartcards. ************************************************** pull client dev tun proto udp remote 128.100.103.211 port 1194 resolv-retry infinite nobind persist-key persist-tun verb 3 ca "C:\\temp\\ca.crt" pkcs11-providers "C:\\PKI\\WC\\NSIS\\eTpkcs11.dll" pkcs11-slot-type label pkcs11-slot "eToken" pkcs11-id-type id pkcs11-id 06 ************************************************* Thanks _____ Discover the new Windows Vista Learn more! <http://search.msn.com/results.aspx?q=windows+vista&mkt=en-US&form=QBRE>
