OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 16.1 Legacy Series »
  • [SOLVED] Setting up RoadWarrior OpenVPN
« previous next »
  • Print
Pages: [1]

Author Topic: [SOLVED] Setting up RoadWarrior OpenVPN  (Read 4868 times)

purpleimpala

  • Newbie
  • *
  • Posts: 3
  • Karma: 1
    • View Profile
[SOLVED] Setting up RoadWarrior OpenVPN
« on: June 11, 2016, 01:40:40 am »
I'm using OPNsense 6.1.16-amd64, and following the instructions at https://docs.opnsense.org/manual/how-tos/sslvpn_client.html .  I am trying to set up 2FA.

(Aside: there's some material missing in Step 0: Preparation in the section entitled "Create a Certificate" where it says "Fill in the form with (leave the rest default):".  Here it needs to mention that the certificate to be created is a Server certificate called "SSLVPN Server Certificate" (for example, to match the text later).)

My problem comes in Step 1: Add SSL server.  When you click the orange box saying "+ Add Server", the form doesn't include a field to select the Backend Authenticator.  This means that when you click "Save", you get an error message at the top of the form pointing out that you must select a Backend Authentication method, but you can't.

If you use the Wizard to add a server (which took me a bit of working out - it's not so obvious that you can click on the magic wand) then at least you can add a server, because the first step is to set up a new Authentication Backend of one of three types (but none of them are OTP unfortunately).

Is there a workaround for this?
« Last Edit: June 13, 2016, 07:26:02 am by franco »
Logged

franco

  • Administrator
  • Hero Member
  • *****
  • Posts: 13699
  • Karma: 1178
    • View Profile
Re: Setting up RoadWarrior OpenVPN
« Reply #1 on: June 11, 2016, 09:26:19 am »
Make sure your firmware version is 16.1.16, and that you do execute Step 0 "Configure TOTP server". If there is no TOTP server, you will not be able to select it in Step 1.
Logged

greY

  • Newbie
  • *
  • Posts: 38
  • Karma: 4
    • View Profile
Re: Setting up RoadWarrior OpenVPN
« Reply #2 on: June 11, 2016, 05:19:20 pm »
I have the same issue with 16.1.16, there is no "Backend for authentication" option field (totp Server is configured)
Logged

purpleimpala

  • Newbie
  • *
  • Posts: 3
  • Karma: 1
    • View Profile
Re: Setting up RoadWarrior OpenVPN
« Reply #3 on: June 11, 2016, 11:03:36 pm »
Yes, it is 16.1.16, and yes, the TOTP server is configured and present.  The point is, the OpenVPN "Add Server" dialog doesn't have a field for selecting the backend.

BTW this is a fresh install of OPNsense.

OPNsense 16.1.16-amd64
FreeBSD 10.2-RELEASE-p18
OpenSSL 1.0.2h 3 May 2016
Logged

franco

  • Administrator
  • Hero Member
  • *****
  • Posts: 13699
  • Karma: 1178
    • View Profile
Re: Setting up RoadWarrior OpenVPN
« Reply #4 on: June 12, 2016, 01:06:25 pm »
Ah, I can see now. Can you try this fix run from the root console shell (Option 8):

# opnsense-patch 6ffc213
Logged

greY

  • Newbie
  • *
  • Posts: 38
  • Karma: 4
    • View Profile
Re: Setting up RoadWarrior OpenVPN
« Reply #5 on: June 12, 2016, 06:05:26 pm »
woked for me, thx!
Logged

franco

  • Administrator
  • Hero Member
  • *****
  • Posts: 13699
  • Karma: 1178
    • View Profile
Re: Setting up RoadWarrior OpenVPN
« Reply #6 on: June 13, 2016, 07:25:53 am »
Ok, thanks for confirming. This will be shipping in 16.1.17. A mobile portability fix interfered with the addition of this field.
Logged

purpleimpala

  • Newbie
  • *
  • Posts: 3
  • Karma: 1
    • View Profile
Re: [SOLVED] Setting up RoadWarrior OpenVPN
« Reply #7 on: June 13, 2016, 09:58:20 am »
Yes, I can see and select the field as expected with this patch. Thanks!
Logged

franco

  • Administrator
  • Hero Member
  • *****
  • Posts: 13699
  • Karma: 1178
    • View Profile
Re: [SOLVED] Setting up RoadWarrior OpenVPN
« Reply #8 on: June 13, 2016, 01:31:30 pm »
Ok, sorry about the hiccup here. 16.1.17 will be released on Wednesday.
Logged

  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 16.1 Legacy Series »
  • [SOLVED] Setting up RoadWarrior OpenVPN
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy
    | XHTML | RSS | WAP2