On Wed, 2018-06-13 at 13:47 +0200, Daniel Wagner wrote: > > > Somewhere there was a script which runs 'openconnect --authenticate' to > > obtain the three relevant fields, and then poke ConnMan to connect > > using them. Isn't that still in the ConnMan repo somewhere? > > Just checked the repo and there is no such script :/ And my google-foo > didn't find anything related. Here's the equivalent for NetworkManager. Obviously the hostname and other arguments on the 'openconnect --authenticate' command line are per-user, per-config stuff. What you do with $COOKIE/$FINGERPRINT/$HOST are not. #!/bin/sh HOST="$1" if [ -z "$HOST" ]; then ????HOST=vpn.example.com fi COOKIE= eval `openconnect --csd-wrapper ~/bin/csd_wrapper --user $LOGNAME \ --authgroup foo $HOST --authenticate` if [ -z "$COOKIE" ]; then ????exit 1 fi nmcli con up 'Example VPN' passwd-file /proc/self/fd/5 5<<EOF vpn.secrets.cookie:$COOKIE vpn.secrets.gwcert:$FINGERPRINT vpn.secrets.gateway:$HOST EOF -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5213 bytes Desc: not available URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20180613/f2f85904/attachment.bin>
