diff options
author | Daniel Kubec <niel@rtfm.cz> | 2015-04-05 00:10:37 +0200 |
---|---|---|
committer | David Sommerseth <davids@redhat.com> | 2015-10-10 00:03:07 +0200 |
commit | f7ef7522f5c7e6d4abfa5a0378c2e2ad265c65ec (patch) | |
tree | db04092f643139b146b822522b1a52baa8f2edd0 /sample/sample-plugins/keying-material-exporter-demo/server.ovpn | |
parent | 84604e0bae7216b46642d5a1a443b86f712d53aa (diff) | |
download | openvpn-f7ef7522f5c7e6d4abfa5a0378c2e2ad265c65ec.tar.gz openvpn-f7ef7522f5c7e6d4abfa5a0378c2e2ad265c65ec.tar.xz openvpn-f7ef7522f5c7e6d4abfa5a0378c2e2ad265c65ec.zip |
sample-plugin: TLS Keying Material Exporter [RFC-5705] demonstration plug-in
A simple plug-in with a corresponding HTTP server and client which can authenticate
an HTTP user based on the authentication already done via an established OpenVPN
connection
[DS: Renamed the module at commit time from sso to keyingmaterialexporter to
avoid confusion with other Single-Sign-On solutions. Updated documentation
and commits accordingly. Added --pull to the client config]
Signed-off-by: Daniel Kubec <niel@rtfm.cz>
Signed-off-by: David Sommerseth <davids@redhat.com>
Acked-by: David Sommerseth <davids@redhat.com>
Diffstat (limited to 'sample/sample-plugins/keying-material-exporter-demo/server.ovpn')
-rw-r--r-- | sample/sample-plugins/keying-material-exporter-demo/server.ovpn | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/sample/sample-plugins/keying-material-exporter-demo/server.ovpn b/sample/sample-plugins/keying-material-exporter-demo/server.ovpn new file mode 100644 index 0000000..5c670b1 --- /dev/null +++ b/sample/sample-plugins/keying-material-exporter-demo/server.ovpn @@ -0,0 +1,18 @@ +tls-server +reneg-sec 0 + +keying-material-exporter "EXPORTER_SSO_TEST" 16 +duplicate-cn + +plugin ./keyingmaterialexporter.so +ca ../../sample-keys/ca.crt +cert ../../sample-keys/server.crt +key ../../sample-keys/server.key +dh ../../sample-keys/dh2048.pem + +server 10.8.0.0 255.255.255.0 +port 1194 +proto udp +dev tun + +verb 4 |