Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Prevent user installing OpenVPN

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 3 Posters 428 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K Offline
      kevin39
      last edited by

      Hi,
      Currently we're using OpenVPN connection with ldap login. Each user is having a static IP to restrict filter VPN usage by user/service.

      But, to improve security, I would like to prevent my users to install OpenVPN on device that I didn't approved. How can I do that ? After hours or searching, I didn't found any way to filter "non approved" device.

      My goal is to only allow OpenVPN connection through our devices. We do not want user to setup there VPN client on their own device.

      Thank you !

      1 Reply Last reply Reply Quote 0
      • jimpJ Offline
        jimp Rebel Alliance Developer Netgate
        last edited by

        There wouldn't be a way to tell if a user is connecting from an approved device as long as they use the same settings. If they take the OpenVPN config+files and copy that to something else, it looks the same to the server.

        The settings and authentication they use have to be valid, of course, they can't just make up whatever they want to connect to your server.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • GertjanG Offline
          Gertjan
          last edited by

          Look also at https://forums.openvpn.net/viewtopic.php?t=24703
          It boils down to : if you can't trust the humans that operate your devices ....

          No "help me" PM's please. Use the forum, the community will thank you.
          Edit : and where are the logs ??

          1 Reply Last reply Reply Quote 1
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.