Something new to play with VPN to increase the security policy with road warrior VPN. We want to verify that the common name of the certificate is the same than the login name
Before with the policy ‘login+certificate+password’ you could use a certificate of a user with a different login name (but with a valid password)
For example two users A and B with two valid certificates, the user A can login with the certificate of user B if obviously the user A sends the good password
With the new rpm to test, a hacker cannot use a certificate from a user and a password from another, there is few chances, but now it is not more possible.
Please could you have a go