search

aminvakil / docker-ocserv

OpenConnect VPN Server Docker
https://quay.io/aminvakil/ocserv
82 stars 35 forks source link

Enhancement: dependancies for OTP and Radius #73

Open thecreativeone91 opened 3 weeks ago

thecreativeone91 commented 3 weeks ago

Can we get the dependancies for OTP and Radius to be able to support two factor authentication? both locally and using Radius.

https://docs.openconnect-vpn.net/recipes/ocserv-2fa/

OATH: One-time passwords with ocserv's password file

Since version 0.10.9 it is possible to use ocserv's password file for 2FA. It requires ocserv to be compiled with liboath

https://docs.openconnect-vpn.net/recipes/ocserv-authentication-radius-radcli/

radcli (or libradius-client) need to be installed before ocserv. If ocserv is compiled before radius libraries, it will build without >radius support. Even if radius libraries are compiled/installed afterwards, it will not work, and ocserv will return errors when you >try to start the service with RADIUS authentication enabled.

aminvakil commented 2 weeks ago

I'm not sure what should we do to add support for this, but I'd be happy to review if you'd whip up a PR about it.