ocserv: config-per-group not read if group comes from certificate
Nikos Mavrogiannopoulos
nmav at gnutls.org
Thu Sep 25 03:18:47 PDT 2014
On Thu, 2014-09-25 at 11:32 +0200, Norbert Paschedag wrote:
> > What is the log (with debugging) output when that user connects?
> >
> > If both apply, ocserv should load the group configuration, and then the user
> > configuration will override it.
>
> Ok, log obtained from 'ocserv -f -d 6' is attached below.
> Both the files /etc/ocserv/config-per-group/vpntest and /etc/ocserv/config-per-group/testuser
> exist and contain the route shown in the log at line 202.
Thanks. It seems that the group name was overridden after the
configurations were opened, causing that issue. I've committed a fix.
regards,
Nikos
More information about the openconnect-devel
mailing list