OpenVPN is a very flexible and solid open source based VPN solution. The basic authentication scheme in OpenVPN is using standard SSL certificates. The eurephia plug-in is an extension to OpenVPN which will add username and password authentication in addition to an enhanced certificate authentication.

The authentication process with eurephia will also add some extra controls. Like if the user account has been activated or if it has been blocked. On failed logins, user accounts, certificate and IP addresses are logged. The eurephia configuration can limit how many failed attempts it will accept before the IP address, certificate or user account will be blocked.

Certificates and user accounts are related and linked together in eurephia, so the remote user must provide both the correct certificate and the username when login in. A firewall profile can be assigned to each user access individually, which defines the network resources the user access may use over the VPN. This gives a fine grained access control on each VPN login.

All accounts and certificate access are stored in a database. The database is also used for login history and to get an overview over login attempts and blocked usernames, certificates and IP addresses.