Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

OpenVPN is complaining about cached passwords

Sampo
New Contributor III
New Contributor III

‎10/13/2023 02:22 AM

Hi,

At SC2 client host '/etc/openvpn/logs/openvpn.log' contains the following warning:

WARNING: this configuration may cache passwords in memory – use the auth-nocache option to prevent thisa

Is there any specific reason as to why the OpenVPN client is caching passwords, or can this be changed safely without issues? OpenVPN client is using client certificate for authentication.

best regards,

Sampo

Labels:
0 Kudos
2 REPLIES 2

sudeshjaiswal
Saviynt Employee
Saviynt Employee

‎10/16/2023 10:13 PM

Hello @Sampo,

At SC2 client host '/etc/openvpn/logs/openvpn.log' contains the following warning:
WARNING: this configuration may cache passwords in memory – use the auth-nocache option to prevent this,Is there any specific reason as to why the OpenVPN client is caching passwords, or can this be changed safely without issues?
We are not using any password in openvpn config, It's just warning that in case if someone using password for openvpn authentication then in that case it will cache the password.

OpenVPN client is using client certificate for authentication. (Yes, it is using client certificate for authentication).

Thanks.

If you find the above response useful, Kindly Mark it as "Accept As Solution".
0 Kudos

Manu269
All-Star
All-Star

‎10/16/2023 10:24 PM

@Sampo we even had similiar query when we were trying to rotate the certificate and we got the following response :

The warning message is just an FYI.

ALso OpenVPN is using client certificate for auth.

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.
0 Kudos
Copyright © 2024 Khoros, LLC