Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Syncing openvpn settings enter auth password

    Scheduled Pinned Locked Moved General pfSense Questions
    15 Posts 9 Posters 6.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DerelictD
      Derelict LAYER 8 Netgate
      last edited by

      Not related to the upgrade.

      You have something that requires a password for OpenVPN to start.

      That is usually a username in the configuration without a password, a password-protected certificate key, or something along those lines.

      Chattanooga, Tennessee, USA
      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
      Do Not Chat For Help! NO_WAN_EGRESS(TM)

      1 Reply Last reply Reply Quote 0
      • B
        bodom
        last edited by

        That makes sense, but is there a way to find out what is password-protected?

        1 Reply Last reply Reply Quote 0
        • D
          doktornotor Banned
          last edited by

          Well if you don't know what is password-protected in your VPN, perhaps you'd just better wipe the config and reconfigure it from scratch?  :o

          1 Reply Last reply Reply Quote 0
          • B
            bodom
            last edited by

            @doktornotor:

            Well if you don't know what is password-protected in your VPN, perhaps you'd just better wipe the config and reconfigure it from scratch?  :o

            You are right indeed; unfortunately, I am not the one who's in charge of creating certificates/reconfiguring from scratch. I am the one who has to fix things that somebody else broke :)

            Often I get incomplete/inaccurate informations about the environment I have to work in, that's why I am asking how to find it myself, if possible ;)

            1 Reply Last reply Reply Quote 0
            • B
              bodom
              last edited by

              After a long search, i found there was an OpenVPN client with a configured username without a password.

              Thank you again for your precious hints.

              1 Reply Last reply Reply Quote 0
              • ssbarneaS
                ssbarnea
                last edited by

                I faced the same issue yesterday when after a reboot the router false to boot and one day later I am still unable to fix it. I do not get the password prompt but the boot is stuck at the same command. Entering data does not help but Ctr-C would allow me to get a /bin/sh prompt (but almost no services running).
                I tried to find a way to disable or remove this package from the command line it seems that nothing standard would work.

                The only suggestion I found was that I would have to hack the config.xml file in order to do this. I am afraid that even if I will fix it, i will endup looking for an alternative that does not rely on php to control the system boot process...

                1 Reply Last reply Reply Quote 0
                • D
                  deleted
                  last edited by deleted

                  I currently have the same problem. Is it the only way to completely reconfigure? Oddly enough, I can't enter the PW. It is not accepted.

                  1 Reply Last reply Reply Quote 0
                  • D
                    deleted
                    last edited by

                    If someone else has this problem, please try the following very simple solution.

                    I have established the serial connection with the Linux tool "minicom". With this tool, you can not make any inputs on the Netgate.

                    With the tool "screen" it worked without problems.

                    S 1 Reply Last reply Reply Quote 0
                    • S
                      sgruen @deleted
                      last edited by

                      @deleted Can you please describe what exactly you have done?

                      SebMS R 2 Replies Last reply Reply Quote 0
                      • SebMS
                        SebM @sgruen
                        last edited by

                        @sgruen said in Syncing openvpn settings enter auth password:

                        @deleted Can you please describe what exactly you have done?

                        @deleted is using a serial connection from a computer to the PfSense router that probably doesn't have a keyboard nor screen, to be able to type the username and password at boot. If you have a client configured with certificates, just pressing the enter key at boot would also work.

                        If your problem is to do with a VPN client, may I suggest you change the configuration and enable "Do not retry connection when authentication fails" under User Authentication Settings > Authentication Retry. Try to reboot and see if it solves your problem.

                        1 Reply Last reply Reply Quote 1
                        • D
                          deleted
                          last edited by

                          Right.

                          I first used the Linux tool "minicom" for access and then had the described error. When I used the tool "screen" everything works without problems.

                          Why it did not work with the first tool, I can not say. So exactly I have not made myself then on the troubleshooting.

                          1 Reply Last reply Reply Quote 0
                          • viktor_gV
                            viktor_g Netgate
                            last edited by

                            Please be carefull!
                            Screenshot from 2021-03-02 14-53-24.png

                            D 1 Reply Last reply Reply Quote 0
                            • D
                              deleted @viktor_g
                              last edited by

                              @viktor_g

                              Thanks for the tip.

                              I connect directly to the Netgate. Nothing can go wrong there. 😊

                              1 Reply Last reply Reply Quote 0
                              • R
                                rexki @sgruen
                                last edited by rexki

                                SG-2100 (2 days out of box) on latest - 21.05-RELEASE (arm64)
                                VPN
                                OpenVPN
                                Clients
                                Pencil Edit
                                User Authentication Settings Area/block
                                Load the empty password box - just tested it - with the box below unchecked (default) -
                                Do not retry connection when authentication fails

                                That was not it. the box being checked - it was the empty password box. Have a screenshot picture but getting that into this underpowered forum tool is not worth the effort.

                                1 min exact boot to the OpenVPN fowl up - then about 2:30 to the finished console screen due mainly to what appears to the be GeoIP files being reloaded and placed?

                                pfSense 2.3.4-Release(amd64) - 31 watts Min d-power mode - 843-853 mbps across LANs -  i5-2400 3xGigE - Asus P8H61-M -All slotted Intel single NICS EM drivers -  shooting for 6 watts - to save $27/year in electricity.  In Hawaii $50 per year savings over 20 watt delta!!

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.