One thing I find frustrating is how thin the Untangle documentation is. It has served me well for learning the basics about pretty much anything, but if a person needs to know a bit more, how things work "under the hood", there seems to be no way find out more.
Writing to them usually produces a one-line reply after a couple days - at that rate, trying find out something useful takes too long.
As a result, most of the issues I have struggled with have not been with the product so much as my inability to source the information I need to set it up properly. I read postings (mostly replies to postings) from UT users here that obviously know the product more deeply than I ever will. Where do you dig up the detailed dirt on the product?
Anyway, this wasn't intended to be a rant, as I'm a big UT fan.
I am trying to learn how the security works with the UT OpenVPN service app. I see comments in the sales literature that claim Two Factor Authentication is now available in UT OpenVPN, but I can't find anything in the UT interface that offers this.
Further, I would like to be able to explain to my more security-conscious clients how the security works. Can I use a config file from any OpenVPN server to get into my server, providing I have a valid username and password? If not, exactly how easy/difficult would it be to counterfeit a config file to get in?
By explaining to a client that a person needs not only a working username and password, but also a config file that can't be counterfeited, it could almost be argued that 2FA is built-in.
Are the config files user-specific? Exporting a config file in the OpenVPN interface appears to be a user-specific thing. So, does that mean that if I use the config file for John Smith, would I need John Smith's credentials to use it?
Anyway, if anyone has seen a decent description on how all this works, I'd appreciate a link.