Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
112
Views
0
Helpful
2
Replies

Trying to overcome OpenVPN Reneg-Seconds

AB-19
Level 1
Level 1

‎07-24-2025 11:03 AM

I've installed a Unifi Dream machine and used Duo as it's Radius, I use LDAP for primary auth and Duo Push as MFA. All is well...For an hour then OpenVPN forces it's hourly renegotiation and another push is sent out which must be approved. Not keen on home workers needing to approve numerous times a day.

Is there a way to have DUO auto-approve based on the request being within the hour and from the same IP?

Or some other mechanism to achieve this?

Thanks

0 Helpful
2 Replies 2

AB-19
Level 1
Level 1
In response to Sharyn829Ross

‎07-25-2025 03:32 AM

Sharyn,

You are right, the Unifi implementation of OpenVPN is restrictive!

I like your idea of the remembered devices. I could configure for 8 hours on the "without risk based protection" which would cover the working day. 

I'll give it a test.

0 Helpful

AB-19
Level 1
Level 1
In response to AB-19

‎07-25-2025 05:47 AM

I cannot get it to stop asking to approve hourly, could you offer a guide to accomplish this?

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents