Re: [Openvpn-users] openvpn and openca

[Erich Titl <erich.titl@xxxxxxxx>]

Jon Bendtsen wrote:
> Den 48338søndag kl. 1:21 skrev Kroll, Nathan:
>
> > We tried to use OpenVPN to control access and increase security to  a 
> > central database server, but the administrators weren’t satisfied  
> > with the “crude” command line control of OpenSSL (they’re windows  
> > admins J ).  I attempted to create a php web interface to allow  easy 
> > administration, but the complexity and lack of time rendered  the 
> > project differed for a simple Windows PPTP VPN.  Since that  time (a 
> > few months ago), there has been much concern over security  and 
> > wanting more than a simple Windows password to access the  database 
> > server.  They want to look at OpenVPN again, which is  great.  
> > However, I ran across OpenCA and was wondering if anyone  has tied 
> > OpenVPN to it and if they could enlighten me as to how  difficult it 
> > was and/or offer a HOWTO.  I looked online and found  little helpful 
> > docs about using the two together.  I intend to  install both OpenVPN 
> > and OpenCA on a test server Monday, but I’m  hoping someone can offer 
> > help before then.
>
>
> Other options are
> EJBCA    - webthing running on jboss
> TinyCA    - X11 thing, which they could reach through a VNC thing.>

I have not used OpenCA, but I am using TinyCA to create and manage 
certificates for my OpenVPN connections. What can I say.... it works as 
expected. I am using PKCS#12 files because I feel they are convenient. I 
doubt though TinyCA will be the right choice once you need more than a 
few dozens of certificates.

cheers

Erich




____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users