NOTE: "Guest Usage" is only relevant is you are part of the eduVPN community, i.e. an NREN.
The VPN server software implements "Guest Usage". This means that users of one VPN server deployment, e.g operated by organization A, can use another deployment, say operated by organization B, and vice versa.
The trust created between the VPN servers is based on signatures over OAuth 2.0 access tokens. Each server can configure public keys of other VPN servers it trusts, thus allowing users of those lists servers to access its VPN service as well.
This "Guest Usage" scenario is OPTIONAL and DISABLED by default.
In the file
/etc/vpn-user-portal/config.php you need to enable
// ... 'Api' => [ 'remoteAccess' => true, ], // ...
If you want to register your server for eduVPN, please contact firstname.lastname@example.org and provide the following information:
The following information needs to be provided in order to be added:
Use the following example template in your mail to email@example.com, please update all values for your situation:
Add [vpn.example.org] to Secure Internet eduVPN
Generic Contact: firstname.lastname@example.org Abuse Contact: email@example.com Technical Contact: firstname.lastname@example.org End-user Support Contact: - email@example.com - +1234567890 - https://support.example.org/ Information Website: https://www.example.org/services/eduvpn SAML Metadata: https://federation.example.org/metadata.xml FQDN: vpn.example.org Country / Region: The Netherlands Restrictions: - in/outbound tcp/25 blocked Public Key: O53DTgB956magGaWpVCKtdKIMYqywS3FMAC5fHXdFNg
Do NOT forget to attach the signed copy of the policy document!