ocserv: config-per-group not read if group comes from certificate

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu Sep 25 03:18:47 PDT 2014

On Thu, 2014-09-25 at 11:32 +0200, Norbert Paschedag wrote:

> > What is the log (with debugging) output when that user connects?
> >
> > If both apply, ocserv should load the group configuration, and then the user
> > configuration will override it.
> Ok, log obtained from 'ocserv -f -d 6' is attached below.
> Both the files /etc/ocserv/config-per-group/vpntest and /etc/ocserv/config-per-group/testuser
> exist and contain the route shown in the log at line 202.

Thanks. It seems that the group name was overridden after the
configurations were opened, causing that issue. I've committed a fix.


More information about the openconnect-devel mailing list