|
|
Hi I want to use openvpn to ensure that i "KNOW" who is connected to our network and wifi. We have a free certificate from the goverment for each citizen, and companies can get that as well. However since the server should start at boot, we would prefer to have the server certificate un encrypted. And thus we dont really like to use the certificate from the goverment for the server since if it is abused, it is our ass :-( So, i tried to specify my own private certificate in the client.conf as pkcs12 JonBendtsen.P12 and the openvpn servers selfsigned ca as ca ca.crt However, that failed badly. Openvpn does not like that i specify both the pkcs12 and the ca in the client.conf But if i dont specify the ca, then the ca from pkcs12 will be used and that is the wrong ca :-( I can circumvent this by extracting the .crt and the .key from my p12 file, and specify the other ca.crt for the server ca. That works, but having to explain to my fellow windows users that they should run strange openssl commands in the command prompt is dificult. (most clients are more or less clueless windows users). So, any suggestions for how to work arround this? JonB ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-02/msg00086.html on line 194 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-02/msg00086.html on line 194 |