11/14/2023 0 Comments Pritunl google authenticatorThis only works for cases where your users will trust their credentials to the application (in this case VPN). Be aware, it's not necessarily a simple process, and often requires some effort to implement.īasically, you need a way to supply your credentials to OpenVPN, and then have it authenticate on your behalf. You can find out more about Google Apps SSO by just googling for it. If it sounds convoluted, that's because it is.Īssuming your mention of Google Apps means you're using the paid version of Google Apps (now called Google Apps for Work), your best bet would probably be to setup Single Sign-On (SSO), where your internal identity management system is the source of truth, and both Google Apps and your OpenVPN system authenticates against it. You'd basically have to write a custom OpenVPN authentication module that hits Google's OAuth API, requests an authentication token, then presents the user with a special URL they'd have to go to, where they'd sign in, get an access code, which they'd then have to enter into the OpenVPN authentication so it could go back to your OpenVPN authentication module to return to Google to get a "yay" or "nay" on authenticating you. With OpenVPN being a non-web based application, I think it would be almost impossible to do this in a reasonable way. The site directs you to an auth page at Google, which you sign in to and authorize the third-party site. ![]() The key aspect of this is that you (as an application user) never give your credentials to the third-party site. The problem is that the authentication methods supported by Google, such as OAuth, are really geared around authenticating web applications. ![]() I don't think there's a good way to do this.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |