On 02/02/2022 16:25, Bo Berglund wrote:
2) The config file needs to*not* be password protected because I do not know how one can set up a decryption password for an ovpn file and pass it to systemd. I am using this connection system on a RaspberryPi device and it works very well, but I created a specific client ovpn file*without* the client password for it. The connection is protected by the certificates anyway.
It's a log time since we implemented the systemd-ask-password support in OpenVPN. But it should actually ask for credentials or passwords if needed automatically during boot, if that is required. This should be automatically handled by systemd when starting the OpenVPN session.
Basically, OpenVPN asks systemd to ask the user for the required information. The systemd-ask-password implementation does that on the available consoles and provides the response back to OpenVPN. If no console is available at that point, it should be possible to complete this later by manually running systemd-tty-ask-password-agent in a console.
-- kind regards, David Sommerseth OpenVPN Inc _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
