operating_systems:linux:debian:openvpn
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
operating_systems:linux:debian:openvpn [2019/06/11 13:12] – maferreira | operating_systems:linux:debian:openvpn [2020/10/15 13:40] (current) – maferreira | ||
---|---|---|---|
Line 4: | Line 4: | ||
Download easy-rsa v3.0.4 and install it. | Download easy-rsa v3.0.4 and install it. | ||
+ | |||
+ | <note warning> | ||
+ | |||
# wget --no-check-certificate https:// | # wget --no-check-certificate https:// | ||
# tar -xvzf EasyRSA-3.0.4.tgz | # tar -xvzf EasyRSA-3.0.4.tgz | ||
# rm EasyRSA-3.0.4.tgz | # rm EasyRSA-3.0.4.tgz | ||
# mv EasyRSA-3.0.4/ | # mv EasyRSA-3.0.4/ | ||
+ | |||
+ | <note warning> | ||
Initialize a new PKI and generate a CA keypair that will be used to sign certificates. | Initialize a new PKI and generate a CA keypair that will be used to sign certificates. | ||
Line 13: | Line 18: | ||
# export EASYRSA=$(pwd) | # export EASYRSA=$(pwd) | ||
# easyrsa init-pki | # easyrsa init-pki | ||
- | # easyrsa build-ca | + | # easyrsa build-ca |
<note important> | <note important> | ||
- | Pass phrase = totem | + | **Common name :** Testing server OpenVPN certificate |
- | Common name = | + | |
</ | </ | ||
+ | |||
+ | Now build the intermediate certificate. | ||
+ | # ./easyrsa build-server-full server nopass | ||
+ | |||
+ | Once you have generated and signed OpenVPN server certificate, | ||
+ | # cd / | ||
+ | # mv ca.crt root_ca.crt | ||
+ | # mv private/ | ||
+ | | ||
+ | # mv issued/ | ||
+ | # mv private/ | ||
+ | |||
+ | Also move **ca.crt** to / | ||
+ | # mv / | ||
+ | |||
+ | Make sure pki directory has the following rights, otherwise easygateway web interface won't detect the root_ca.crt file (file_exists() php function): | ||
+ | drwxrwx--x 6 root | ||
+ | |||
+ | References: | ||
+ | https:// | ||
+ | https:// |
operating_systems/linux/debian/openvpn.txt · Last modified: 2020/10/15 13:40 by maferreira