operating_systems:linux:debian:openvpn
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
operating_systems:linux:debian:openvpn [2019/06/14 08:50] – maferreira | operating_systems:linux:debian:openvpn [2020/10/15 13:40] (current) – maferreira | ||
---|---|---|---|
Line 11: | Line 11: | ||
# rm EasyRSA-3.0.4.tgz | # rm EasyRSA-3.0.4.tgz | ||
# mv EasyRSA-3.0.4/ | # mv EasyRSA-3.0.4/ | ||
+ | |||
+ | <note warning> | ||
Initialize a new PKI and generate a CA keypair that will be used to sign certificates. | Initialize a new PKI and generate a CA keypair that will be used to sign certificates. | ||
Line 19: | Line 21: | ||
<note important> | <note important> | ||
- | **Pass phrase :** totem\\ | ||
**Common name :** Testing server OpenVPN certificate | **Common name :** Testing server OpenVPN certificate | ||
</ | </ | ||
- | Reference: https:// | + | Now build the intermediate certificate. |
+ | # ./easyrsa build-server-full server nopass | ||
+ | |||
+ | Once you have generated and signed OpenVPN server certificate, | ||
+ | # cd / | ||
+ | # mv ca.crt root_ca.crt | ||
+ | # mv private/ | ||
+ | |||
+ | # mv issued/ | ||
+ | # mv private/ | ||
+ | |||
+ | Also move **ca.crt** to / | ||
+ | # mv / | ||
+ | |||
+ | Make sure pki directory has the following rights, otherwise easygateway web interface won't detect the root_ca.crt file (file_exists() php function): | ||
+ | drwxrwx--x 6 root | ||
+ | |||
+ | References:\\ | ||
+ | https:// | ||
+ | https:// |
operating_systems/linux/debian/openvpn.1560502232.txt.gz · Last modified: 2019/06/14 08:50 by maferreira