Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
User certificates
« previous
next »
Print
Pages: [
1
]
Author
Topic: User certificates (Read 942 times)
Dispute
Newbie
Posts: 5
Karma: 0
User certificates
«
on:
February 28, 2024, 01:37:10 am »
Hi all,
Currently I have the root user disabled.
I use a custom user to access my firewall.
If this users certificate expires, does this prevent me from accessing my firewall? Or is this certificate for the VPN only?
Thank you in advance.
Logged
bartjsmit
Hero Member
Posts: 2017
Karma: 194
Re: User certificates
«
Reply #1 on:
February 28, 2024, 08:14:33 am »
Out of the box there is just username and password for authentication. You can add TOTP or use RADIUS which may have other factors configured.
OpenVPN is one use for user certificates but they can have other purposes.
Bart...
Logged
Dispute
Newbie
Posts: 5
Karma: 0
Re: User certificates
«
Reply #2 on:
March 01, 2024, 03:30:08 am »
First, thank you for the reply!
So, logging into the OPNsense does not require a certificate then?
Logged
bartjsmit
Hero Member
Posts: 2017
Karma: 194
Re: User certificates
«
Reply #3 on:
March 01, 2024, 08:04:41 am »
Nope, if you want to use client certs as an authentication factor, you'd need to put a reverse proxy on the management network that is capable of it. Something like this:
https://www.ssltrust.co.uk/help/setup-guides/client-certificate-authentication
Not a bad idea, just a bit baroque
http://catb.org/jargon/html/B/baroque.html
Bart...
Logged
Dispute
Newbie
Posts: 5
Karma: 0
Re: User certificates
«
Reply #4 on:
March 07, 2024, 02:47:22 am »
wow,
Much appreciated!
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
User certificates