Verifying Access Server Downloads with SHA256SUM
Official SHA256 checksums for OpenVPN Access Server downloads, including Linux packages, virtual machine images, bundled clients, installation scripts, and post-authentication scripts.
When downloading Access Server files manually, you can verify that the files you receive are authentic and unaltered. One way to do this is to use SHA-256 checksums, which provide a unique signature for each file. You can compare this signature with the one we provide to confirm the integrity of the downloaded files. If the checksum matches, you can be confident that the file is intact and authentic.
SHA256 checksums for Access Server files
Artifacts
Platform | Architecture | Package | SHA256SUM |
|---|---|---|---|
RHEL 8 | x86_64 | openvpn-as-3.2.1_d0affc91-1.el8.x86_64.rpm |
|
RHEL 9 | x86_64 | openvpn-as-3.2.1_d0affc91-1.el9.x86_64.rpm |
|
RHEL 10 | x86_64 | openvpn-as-3.2.1_d0affc91-1.el10.x86_64.rpm |
|
Debian 12 (Bookworm) | amd64 | openvpn-as_3.2.1-d0affc91-Debian12_amd64.deb |
|
Debian 13 (Trixie) | amd64 | openvpn-as_3.2.1-d0affc91-Debian13_amd64.deb |
|
Ubuntu 22 (Jammy) | amd64 | openvpn-as_3.2.1-d0affc91-Ubuntu22_amd64.deb |
|
Ubuntu 22 (Jammy) | arm64 | openvpn-as_3.2.1-d0affc91-Ubuntu22_arm64.deb |
|
Ubuntu 24 (Noble) | amd64 | openvpn-as_3.2.1-d0affc91-Ubuntu24_amd64.deb |
|
Ubuntu 24 (Noble) | arm64 | openvpn-as_3.2.1-d0affc91-Ubuntu24_arm64.deb |
|
VMware ESXi | x86_64 | as-ubuntu-image-noble-3.1.0.ova |
|
Hyper-V | x86_64 | as-ubuntu-image-noble-3.1.0.vhdx.zip |
|
Debian/Ubuntu (clients bundle) | all | openvpn-as-bundled-clients-latest.deb |
|
RHEL (clients bundle) | all | openvpn-as-bundled-clients-latest.rpm |
|
Scripts
File Name | SHA256SUM | Version |
|---|---|---|
install.sh |
| 2.0 |
bridge-down.sh |
| 1.0 |
bridge-up.sh |
| 1.0 |
aws-updown.sh |
| 1.0 |
ipsec.conf |
| 1.1 |
ipsec.secrets |
| 1.0 |
pascrs.py |
| 1.0 |
pasvar.py |
| 1.0 |
post_auth_custom_auth.py |
| 1.0 |
post_auth_ip_address_checking.py |
| 1.0 |
post_auth_ldap_autologin_dbsave.py |
| 1.1 |
post_auth_mac_address_checking.py |
| 2.1 |
post_auth_pas_only.py |
| 1.1 |
post_auth_radius_mapping.py |
| 2.1 |
post_auth_saml_group_mapping.py |
| 1.1 |
post_auth_x509_group.py |
| 1.0 |
post_auth_x509.py |
| 1.0 |
SHA256SUM is a tool that generates a 256-bit hash (a unique string of characters) for a file. A calculation based on the file's contents generates this hash, and if even one byte of the file changes, the hash will be completely different. By comparing the hash of your downloaded file with the official hash provided by us, you can verify that the file hasn't been altered or corrupted.
Verifying the file ensures it wasn't corrupted during the download process.
Comparing the checksum helps protect against any unauthorized modifications to the file.
Downloading a file from an official source may not always guarantee safety if the file is intercepted and altered. To ensure the file is legitimate, you should verify the checksum.
We recommend using the install.sh script from the Access Server Portal, as it leverages the operating system's built-in package manager to automatically authenticate packages with a trusted signing key, eliminating the need for manual verification. However, if preferred, you can manually validate the install.sh script's integrity using the SHA256 checksum provided in the table above.
For offline installations, you can manually check the integrity of any downloaded files using the provided SHA256 hashes. To verify a downloaded file, follow these steps:
Connect to the console and get root privileges.
Download the install script from the Access Server portal or manually download the Access Server file.
Calculate the checksum of your downloaded file:
sha256sum openvpn-as-x.deb1
Replace the filename with the file you want to check the integrity of.
After running the command, the tool returns a checksum.
Compare the checksum with the one listed for the file in the scripts table. If it matches, your file is authentic.
If you're using the installation script from the Access Server Portal, you can verify the integrity of
install.shby comparing the SHA256SUM and version from the scripts table.The easiest way to ensure the authenticity of Access Server installation files is to use our install script, which leverages the operating system's built-in package manager to authenticate downloaded packages using a trusted signing key. This eliminates the need for manual file verification. However, suppose you prefer downloading the installation files manually, such as for offline installations. In that case, you can authenticate their integrity by comparing the files against the provided SHA256 hashes to ensure they haven't been tampered with or corrupted.