1. Home
  2. pfSense® Software
  3. OpenVPN
  4. Openvpn disable user.

Openvpn disable user.

  • T

    Hi!

    First, I will apologize about my bad english… sry.

    I would like to know how to disable openvpn users (if it is possible) in the pfsense web interface.
    My vpn users was created via build-key-pass <unique-name-user>. Could I make this via "Client-Specific-Configuration" menu of OpenVPN?

    Thank you very much.

    Have a nice day ;-)</unique-name-user>

    0
  • Cry Havok

    That's what the certificate revocation list is for.

    0
  • T

    Ok, thanks. I will try to find documentation about it and how to configure.

    0
  • T

    If I understand, I need to make:

    /openvpn/easy-rsa/revoke-full <user-key>This builds a /openvpn/easy-rsa/keys/crl.pem file. Then, I need to put this file into /var/etc path of pfsense filesystem and to edit openvpn_server0.conf for to add a line like this:

    crl-verify /var/etc/crl.pem

    And every time I need to disable a vpn user, make this and put the crl.pem file into pfsense firewall. Isn't it?</user-key>

    0
  • GruensFroeschli

    http://openvpn.net/howto.html#revoke

    On pfsense there is below the fields to set the server key and certificate a field to put your CRL in.
    No need to mess around with copying files manually and modify the config files.
    Just use the field which is already in the GUI.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy