diff options
-rw-r--r-- | docs/configexamples/index.rst | 1 | ||||
-rw-r--r-- | docs/configexamples/openvpn-ldap.rst | 8 | ||||
-rw-r--r-- | docs/configuration/vpn/openconnect.rst | 4 |
3 files changed, 8 insertions, 5 deletions
diff --git a/docs/configexamples/index.rst b/docs/configexamples/index.rst index b90f25ad..c25b3ee8 100644 --- a/docs/configexamples/index.rst +++ b/docs/configexamples/index.rst @@ -18,6 +18,7 @@ This chapter contains various configuration examples: pppoe-ipv6-basic l3vpn-hub-and-spoke inter-vrf-routing-vrf-lite + openvpn-ldap Configuration Blueprints (autotest) diff --git a/docs/configexamples/openvpn-ldap.rst b/docs/configexamples/openvpn-ldap.rst index 7fcc6b5f..402ab7f1 100644 --- a/docs/configexamples/openvpn-ldap.rst +++ b/docs/configexamples/openvpn-ldap.rst @@ -2,11 +2,13 @@ .. _examples-openvvpn-ldap: +######################### OpenVPN with LDAP example -------------------- +######################### Configuration AD and a windows server -^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ +===================================== + We aim to configure LDAP authentication between the VYOS router and Windows Server 2019 (role: Active Directory) when our customers connect to our privet network using the OpenVPN client. Using the general schema for example: @@ -38,7 +40,7 @@ Picture 1 - Adding the AD role Picture 2 - Adding the AD role Configuration VyOS router -^^^^^^^^^^^^^^^^^^^^^^^^^ +========================= Make the configuration file for the LDAP plugin. diff --git a/docs/configuration/vpn/openconnect.rst b/docs/configuration/vpn/openconnect.rst index 112da58f..1b4d4b4c 100644 --- a/docs/configuration/vpn/openconnect.rst +++ b/docs/configuration/vpn/openconnect.rst @@ -56,7 +56,7 @@ Server Configuration set vpn openconnect ssl passphrase <pki-password> 2FA OTP support -==================== +=============== Instead of password only authentication, 2FA password authentication + OTP key can be used. Alternatively, OTP authentication only, @@ -223,7 +223,7 @@ To display the configured OTP user settings, use the command: show openconnect-server user <username> otp <full|key-b32|key-hex|qrcode|uri> Configuring RADIUS accounting -=========================== +============================= OpenConnect can be configured to send accounting information to a RADIUS server to capture user session data such as time of |