OpenVPN
  Download PDF

How To Enable OpenOTP Authentication in OpenVPN

This document explains how to enable OpenOTP authentication with Radius Bridge and OpenVPN.

1. WebADM/OpenOTP/Radius Bridge

For this recipe, you will need to have WebADM/OpenOTP installed and configured. Please, refer to WebADM Installation Guide and WebADM Manual to do it. You have also to install our Radius Bridge product on your WebADM server(s).

2. Register your OpenVPN in RadiusBridge

On your OpenOTP RadiusBridge server, edit the /opt/radiusd/conf/clients.conf and add a RADIUS client (with IP address and RADIUS secret) for your OpenVPN :


   client <OpenVPN Server IP> {
        ipaddr = <OpenVPN Server IP>
        secret = Testing123
}

3. Configuring New Radius Server on OpenVPN

Here, we will configure a new RADIUS Server through the OpenVPN GUI. Go on the AUTHENTICATION tab and click on RADIUS.



3- Set the toggle to Yes to enable RADIUS authentication.

4- Specify the hostname or IP address for your RADIUS server.

5- Specify the shared secret. You must configure the RADIUS server with the same shared secret.

6- Define the port where the RADIUS protocol sends UDP packets. The default port is 1812. Accounting Port : Define the port where the RADIUS protocol listens for accounting requests. The default port is 1813, and the accounting port is only required when you enable RADIUS accounting.

7- Define the RADIUS Authentication Method.