AW: How can I specify a realm with "--protocol=pulse"?
Schütz Dominik
Dominik.Schuetz at esolutions.de
Wed May 4 03:42:27 PDT 2022
It does not work with '-F pulse_realm_entry:realm=REALM_xxx_Foo' - see text below:
# --protocol=pulse
dominik at host1:~$ sudo openconnect --script=/root/vpnc-script --protocol=pulse -F pulse_realm_entry:realm=REALM_xxx_Limited_Machine_Network "https://vpn-gateway/linux""
Connected to xxx.xxx.xxx.xxx:443
SSL negotiation with vpn-gateway
Connected to HTTPS on vpn-gateway with ciphersuite (TLS1.2)-(RSA)-(AES-128-GCM)
Got HTTP response: HTTP/1.1 101 Switching Protocols
Choose Pulse user realm:
Realm: [REALM_xxx_Productive|REALM_xxx_Limited_Initial_Network|REALM_xxx_Limited_Machine_Network]:
# --protocol=nc
dominik at host1:~$ sudo openconnect --script=/root/vpnc-script --protocol=nc "https://vpn-gateway/linux"
GET https://vpn-gateway/linux
Connected to xxx.xxx.xxx.xxx:443
SSL negotiation with vpn-gateway
Connected to HTTPS on vpn-gateway with ciphersuite (TLS1.2)-(RSA)-(AES-128-GCM)
Got HTTP response: HTTP/1.1 302 Found
GET https://vpn-gateway/dana-na/auth/url_xxx/welcome.cgi
SSL negotiation with vpn-gateway
Connected to HTTPS on vpn-gateway with ciphersuite (TLS1.2)-(RSA)-(AES-128-GCM)
frmLogin
realm [REALM_xxx_Productive|REALM_xxx_Limited_Initial_Network|REALM_xxx_Limited_Machine_Network]:
dominik at host1:~$ sudo openconnect --script=/root/vpnc-script --protocol=nc --form-entry=frmLogin:realm=REALM_xxx_Limited_Machine "https://vpn-gateway/linux"
GET https://vpn-gateway/linux
Connected to xxx.xxx.xxx.xxx:443
SSL negotiation with vpn-gateway
Connected to HTTPS on vpn-gateway with ciphersuite (TLS1.2)-(RSA)-(AES-128-GCM)
Got HTTP response: HTTP/1.1 302 Found
GET https://vpn-gateway/dana-na/auth/url_xxx/welcome.cgi
SSL negotiation with vpn-gateway
Connected to HTTPS on vpn-gateway with ciphersuite (TLS1.2)-(RSA)-(AES-128-GCM)
frmLogin
frmLogin
username:
-----Ursprüngliche Nachricht-----
Von: David Woodhouse <dwmw2 at infradead.org>
Gesendet: Mittwoch, 4. Mai 2022 12:11
An: Schütz Dominik <Dominik.Schuetz at esolutions.de>; openconnect-devel at lists.infradead.org
Betreff: Re: How can I specify a realm with "--protocol=pulse"?
On Wed, 2022-05-04 at 09:36 +0000, Schütz Dominik wrote:
> Hi,
>
> how can I specify a realm with "--protocol=pulse"?
> # output without specify realm
> Choose Pulse user realm:
> Realm: [REALM_xxx_Productive|REALM_xxx_Limited_Initial_Network|REALM_xxx_Limited_Machine_Network]:REALM_xxx_Limited_Machine_Network
>
>
> With "--protocol=nc" I specify the realm as follows:
> # output without specify realm
> frmLogin
> realm [REALM_xxx_Productive|REALM_xxx_Limited_Initial_Network|REALM_xxx_Limited_Machine_Network]:REALM_xxx_Limited_Machine_Network
>
> # command with realm
> dominik at host1:~$ sudo openconnect --script=/root/vpnc-script --protocol=nc --form-entry=frmLogin:realm=REALM_xxx_Limited_Machine_Network
> https://vpn-gateway/linux
For pulse I think you want '-F pulse_realm_entry:realm=REALM_xxx_Foo'
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6003 bytes
Desc: not available
URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20220504/97a73a18/attachment.p7s>
More information about the openconnect-devel
mailing list