Once again about our OTP / YubiKey setup...
What parameters should I set on both the client and the server to
achieve the best user experience? Which sadly means two contradictory
aspects:
1) If it should drop do it quick so that the user isn't left with a
stale tunnel that must be killed manually, but also
2) if it could recover without re-requesting OTP give it enough time to
do so.
My current cient config has:
ping-exit 60
auth-nocache
auth-retry none
The server config has:
keepalive 10 60
But I'm sure there are other parameters to tweak...?
Thanks!
Michael
------------------------------------------------------------------------------
How ServiceNow helps IT people transform IT departments:
1. Consolidate legacy IT systems to a single system of record for IT
2. Standardize and globalize service processes across IT
3. Implement zero-touch automation to replace manual, redundant tasks
http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
