On Fri, Mar 4, 2016 at 1:38 AM, Gert Doering <g...@greenie.muc.de> wrote:
> I think this needs to be a question the installer asks.
>
I agree. Let's face it, the use-case you are talking about is an
organization using something like SCCM to roll out openvpn to a bunch of
users - who don't have local admin (if they did, you wouldn't need this
feature).
Frankly, such an organization is really using SCCM to control who has
openvpn, so would also probably want all users *who have openvpn installed*
to be able to run openvpn - so would set the group to be "Domain Users"
rather than anything finer-grained. Or they would make a domain group
called "Openvpn Users" and use it to control who gets openvpn - and
therefore also has the ability to run it
Jason
--
Cheers
Jason Haar
Information Security Manager, Trimble Navigation Ltd.
Phone: +1 408 481 8171
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
