How to configure Viscosity to use password

Got a problem with Viscosity or need help? Ask here!

atma

Posts: 4
Joined: Sat Jul 11, 2009 1:57 am

Post by atma » Sat Jul 11, 2009 2:03 am
Hello,

I'm new to all this. I use it to play in my local LAN. But I've bought viscosity after trying it. Neat client :-)

I have generated a cert using pkitool (OpenVPN-2.0) using the --pass option because I wanted to add a password auth when using my laptop.

Now I can connect to the server, which the other clients connect normally but I don't know where to put the password. Viscosity does not prompt me for a password and these are the errors I get:

ri Jul 10 18:49:34 2009 192.168.0.14:49185 Re-using SSL/TLS context
Fri Jul 10 18:49:34 2009 192.168.0.14:49185 LZO compression initialized
Fri Jul 10 18:49:34 2009 192.168.0.14:49185 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Jul 10 18:49:34 2009 192.168.0.14:49185 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Jul 10 18:49:34 2009 192.168.0.14:49185 Local Options hash (VER=V4): '691e95c7'
Fri Jul 10 18:49:34 2009 192.168.0.14:49185 Expected Remote Options hash (VER=V4): '66096c33'
Fri Jul 10 18:49:34 2009 192.168.0.14:49185 TLS: Initial packet from 192.168.0.14:49185, sid=28251e17 f805a7c3
Fri Jul 10 18:50:34 2009 192.168.0.14:49185 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Jul 10 18:50:34 2009 192.168.0.14:49185 TLS Error: TLS handshake failed
Fri Jul 10 18:50:34 2009 192.168.0.14:49185 SIGUSR1[soft,tls-error] received, client-instance restarting

I believe this error is exactly because the cert was crated using the --pass option and now expects a password.

NOTE: when the cert was created it prompt me only for password not for username. So when I choose the option user User/Password Authentication in Viscosity options, I have no idea what username to put in there.

Can you help me please? Where should I put this password in order to work and/or how should I configure the server to accept user/pass auth?

Regards

James

User avatar
Posts: 2313
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Tue Jul 14, 2009 9:32 pm
Hi atma,

The pkitool with the --pass option will generate a password protected key file (rather than a password protected certificate file). Try editing your connection in Viscosity, clicking on the Certificates tab, and switch around (or clear and reselect) your certificate, key, and CA files, making sure the password protected key file has been selected in the Key field.

Once you have saved the changes, try connecting again. Viscosity should prompt you for the password before establishing the connection.

The User/Password Authentication option is for when the OpenVPN server has been setup to require a username and password from the client. This option should only be turned on if this is the case (otherwise the server will most likely ignore the username/password entered).

Cheers,
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
2 posts Page 1 of 1