diff options
| author | Jörg Frings-Fürst <debian@jff.email> | 2021-11-29 20:46:00 +0100 |
|---|---|---|
| committer | Jörg Frings-Fürst <debian@jff.email> | 2021-11-29 20:46:00 +0100 |
| commit | f2b3dda12a731c2e0971cb7889728edaf23f6cb0 (patch) | |
| tree | fdf8833416567ca3842f347b2126cdbb13c746bd /doc/man-sections | |
| parent | 4ee98f284a93c3b855092d35ac21371d9dcad65b (diff) | |
New upstream version 2.5.4upstream/2.5.4
Diffstat (limited to 'doc/man-sections')
| -rw-r--r-- | doc/man-sections/client-options.rst | 8 | ||||
| -rw-r--r-- | doc/man-sections/server-options.rst | 14 |
2 files changed, 20 insertions, 2 deletions
diff --git a/doc/man-sections/client-options.rst b/doc/man-sections/client-options.rst index af21fbc..c5b7ad9 100644 --- a/doc/man-sections/client-options.rst +++ b/doc/man-sections/client-options.rst @@ -50,6 +50,14 @@ configuration. after a failed auth. Older clients will keep using the token value and react according to ``--auth-retry`` +--auth-token-user base64username + Companion option to ``--auth-token``. This options allows to override + the username used by the client when reauthenticating with the ``auth-token``. + It also allows to use ``--auth-token`` in setups that normally do not use + username and password. + + The username has to be base64 encoded. + --auth-user-pass Authenticate with server using username/password. diff --git a/doc/man-sections/server-options.rst b/doc/man-sections/server-options.rst index 5a68945..ac0df55 100644 --- a/doc/man-sections/server-options.rst +++ b/doc/man-sections/server-options.rst @@ -487,11 +487,21 @@ fast hardware. SSL/TLS authentication must be used in this mode. The UI version of a UI if one is running, for example :code:`de.blinkt.openvpn 0.5.47` for the Android app. + :code:`IV_SSO=[crtext,][openurl,][proxy_url]` + Additional authentication methods supported by the client. + This may be set by the client UI/GUI using ``--setenv`` + When ``--push-peer-info`` is enabled the additional information consists of the following data: - :code:`IV_HWADDR=<mac address>` - The MAC address of clients default gateway + :code:`IV_HWADDR=<string>` + This is intended to be a unique and persistent ID of the client. + The string value can be any readable ASCII string up to 64 bytes. + OpenVPN 2.x and some other implementations use the MAC address of + the client's interface used to reach the default gateway. If this + string is generated by the client, it should be consistent and + preserved across independent session and preferably + re-installations and upgrades. :code:`IV_SSL=<version string>` The ssl version used by the client, e.g. |