Time based ou user based access.

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
laurocosta
Posts: 1
Joined: Wed Apr 08, 2020 2:14 pm

Time based ou user based access.

Post by laurocosta » Wed Apr 08, 2020 3:16 pm

Is there a way to control time ranges when a user can access the VPN service?

With our SSH server, we do it like this:

- Firewall rule allows access to ssh port 24x7
- SSH server crontab modifies the allowed users list, by overwriting sshd_config file (and restarting service). One copy allows all users within business hours, the other copy allows only IT staff on weekends.

Thanks

allaboutthebase
Posts: 11
Joined: Thu Apr 09, 2020 3:53 pm

Re: Time based ou user based access.

Post by allaboutthebase » Tue May 12, 2020 10:52 am

Another option we use is to restrict the users log on times in Active Directory.

This doesnt stop them from VPN but does limit them accessing any resources.

Ideally it would be nice to be able to set permitted login times for a group using the ACCESS LIST.

drkrool
Posts: 43
Joined: Mon May 25, 2020 4:38 am
Location: Quebec, Canada

Re: Time based ou user based access.

Post by drkrool » Thu May 28, 2020 11:03 am

I don't think there is a feature exactly for your need built-in the softether software.

If I was in your position, I would do two hubs, one for during the buisness hours and the other for the IT staff and program a scheduled task using the vpncmd tool to turn off the buisness hours hub when wanted and turning it back on the same way.

Post Reply