From 2e8337de248ef0b5b48cbb2964da0d5c3f28b15b Mon Sep 17 00:00:00 2001 From: Emilien Mantel Date: Thu, 17 Jun 2010 21:38:59 +0200 Subject: Choose a different field in X509 to be username For my company, we use a PKI (linked to a LDAP) with OpenVPN. We can't use "CN" to be username (few people can have the same "CN"). In our case, we only use the UID. With my patch, you can choose another field to be username with a new option called --x509-username-field, the default value is "CN". Signed-off-by: Emilien Mantel Acked-by: David Sommerseth Signed-off-by: David Sommerseth --- options.h | 3 +++ 1 file changed, 3 insertions(+) (limited to 'options.h') diff --git a/options.h b/options.h index 52763f3..cb29d79 100644 --- a/options.h +++ b/options.h @@ -512,6 +512,9 @@ struct options within n seconds of handshake initiation. */ int handshake_window; + /* Field used to be the username in X509 cert. */ + char *x509_username_field; + /* Old key allowed to live n seconds after new key goes active */ int transition_window; -- cgit v1.2.3