OPNsense Forum
Archive => 21.7 Legacy Series => Topic started by: FlangeMonkey on October 06, 2021, 12:19:32 pm
-
Hi Guys,
I understand the Common Name within 'Client Specific Overrides' is the certificate CN used for the user, however, it doesn't appear to be working.
Any Ideas?
Thanks,
-
Dont use overrides, then let the user login, check via Connection Status the correct name and try again.
Also check that you selected the correct server instance in CSC and that the server is using Remote Access with SSL or mix (not User Auth only)
-
Thanks,
It was due to the Server Mode being 'Remote Access (User Auth)' and not include SSL.
-
In server instance there should be a checkbox called "Username is Common Name" .. this should help there too, but using certificates is always better than User Auth only
-
I'm hitting another issue now regarding certification, 'Remote Access (SSL/TSL + User Auth)' and overrides.
Although Overrides work when the Username and cert CN are the same, it doesn't if a different certificate with a different CN is used. Additionally, within 'Connection Status' the common name remains the username.
-
In server instance there should be a checkbox called "Username is Common Name" .. this should help there too, but using certificates is always better than User Auth only
I was playing with that, but I am specifically trying to use different certificate Common Names.