Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Options error: –auth-user-pass requires --pull

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 2 Posters 6.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jhavers
      last edited by

      Hi there,

      I have configured a site to site connection using server mode "Peer to Peer (Shared Key)". I normally do this within an hour, but this time it already takes 4 hours and I have not got it working yet.

      The problem is that on the client site I get the message "Options error: –auth-user-pass requires --pull". No connection is being made/attempted to the server side.

      Can somebody tell me how to solve this, or at least tell me where I can remove the option --auth-user-pass.

      Regards,
      Joost.

      Ps. The error was reported on 6 March 2013 too, but nobody responded to that message, so not solution was reported :-(.

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        You must have had it set to SSL/TLS and defined a username and password at some point. When you switch to shared key, it doesn't unset those values as it should. Delete and recreate that client, or edit it, switch to SSL/TLS and remove the username and password and save it that way, then edit again and change it to shared key.

        1 Reply Last reply Reply Quote 0
        • C
          cmb
          last edited by

          I fixed the config generation so this circumstance doesn't create an invalid OpenVPN client config anymore in 2.3 and newer. Recreating or editing as described in my last post will work around.
          https://redmine.pfsense.org/issues/5941

          1 Reply Last reply Reply Quote 0
          • J
            jhavers
            last edited by

            Thanks for the quick reaction, the problem was as you described and I found the way to solve this.

            Since it defaults to "Peer to Peer (SSL/TLS)", Safari auto completed the authentication section.
            I used Chrome to delete the client and create a new one, and it is working now.

            Thanks!
            Joost.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.