From 3cf9dd88fd84108eccfcce0ebf44e00f9481cd82 Mon Sep 17 00:00:00 2001
From: James Yonan <james@openvpn.net>
Date: Sun, 24 Oct 2010 09:12:47 +0000
Subject: Implement challenge/response authentication support in client mode,
 where credentials are entered from stdin.  This capability is compiled when
 ENABLE_CLIENT_CR is defined in syshead.h (enabled by default).

Challenge/response support was previously implemented for creds
that are queried via the management interface.  In this case,
the challenge message will be returned as a custom
client-reason-text string (see management-notes.txt for more
info) on auth failure.

Also, see the comments in misc.c above get_auth_challenge()
for info on the OpenVPN challenge/response protocol.


git-svn-id: http://svn.openvpn.net/projects/openvpn/branches/BETA21/openvpn@6568 e7ae566f-a301-0410-adde-c780ea21d3b5
---
 syshead.h | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'syshead.h')

diff --git a/syshead.h b/syshead.h
index 15445fc..bad5ce0 100644
--- a/syshead.h
+++ b/syshead.h
@@ -660,6 +660,11 @@ socket_defined (const socket_descriptor_t sd)
 #define AUTO_USERID 0
 #endif
 
+/*
+ * Do we support challenge/response authentication, as a console-based client?
+ */
+#define ENABLE_CLIENT_CR
+
 /*
  * Do we support pushing peer info?
  */
-- 
cgit v1.2.3