Open the OpenVPN Access Server site.
Click Authentication > RADIUS.
Enable the RADIUS authentication.
Select PAP authentication method.
Add an IP address of the Advanced Authentication v5 appliance and specify the secret.
You must specify the <repository name>\<username> or only <username>, if you have set the following configurations:
You have selected a chain from the Used section in the RADIUS Server settings for connecting to OpenVPN.
You have set the default repository name in Policies > Login options of the Advanced Authentication v5 appliance.
If you have assigned multiple chains in the Used section of the RADIUS event for connecting to OpenVPN, then you must specify <username>&<chain shortname> in the username.
NOTE:For some authentication methods, the correct time must be configured on the OpenVPN appliance. You can sync the time of the OpenVPN appliance using the following commands:
/etc/init.d/ntp stop
/usr/sbin/ntpdate pool.ntp.org
Issue: While authenticating with the SMS method to connect to OpenVPN, after three successful authentications the user account is locked by OpenVPN.
Workaround: OpenVPN assumes each attempt of the challenge response (request of additional data in chain) as an error.
To resolve the issue, you must change the number of failures that can be accepted. For more information, see Authentication failure lockout policy.