Quick Start

Launch OpenVPN Access Server On CentOs

1

centos

2

Install ‘openvpn-as’ package

3

Set password for bootstrapped user: ‘passwd openvpn’

5

Set up in browser: https://[youripaddress]/admin

Setting Up OpenVPN Access Server On CentOS

OpenVPN Access Server fits seamlessly with CentOS. The repository provides you with the following three components: the popular OpenVPN open-source software; a user-friendly and intuitive admin web interface; and Connect Clients for Android, iOS, Windows, macOS, and Linux. Once set up, deploying VPN clients is simple.

Follow this high level overview to set up OpenVPN Server and OpenVPN Access Server Admin Web UI. More details, if necessary, can be found with the links in the Next Steps section.

1. Get Updates

Begin by logging on to your Linux system on the console or via SSH with root privileges.
Download and install updates:

yum update

2. Install OpenVPN Access Server Via Repository

Add OpenVPN Access Server repository to your CentOS system from this icon: centos

3. Set Up The Admin Account Through Terminal

Start by changing the password.

passwd openvpn

At the prompt, set a password for the user openvpn.

Connect to the admin page and login using the openvpn user with the new password.

https://[youripaddress]/admin/

Replace “[youripaddress]” with the IP address of your server

The Access Server Admin Web Interface provides an intuitive tool to manage settings for OpenVPN Access Server.

Next Steps

Once the server is installed, you can configure your VPN using the web-based Admin Web UI. These next steps will guide you through setting up a custom hostname, configuring network settings, adding users, and additional security step.

Helpful tips for configuration settings:

To reach OpenVPN Access Server via the Internet, set the Hostname or IP address to one facing the public internet.

The default subnet for OpenVPN Access Server’s internal DHCP system is 172.27.224.0/20. This may be changed to a subnet that might work better for your current network.

OpenVPN Connect

To access OpenVPN Connect via web browser, use the address below by replacing “[youripaddress]” with the IP allocated to your openvpn-as instance:

https://[youripaddress]

Users will then enter their username and password.

Download OpenVPN Connect: After logging in, users can download pre-configured OpenVPN Connect apps or their user configuration files (client.ovpn) and use them to connect to the VPN with other OpenVPN Clients.

Helpful Linux Tips

  • OpenVPN Access Server is not compatible with any version below the 2.1 OpenVPN community/Linux client.
  • Successfully running the Linux commands here requires that they are executed with root privileges logged in as a root user or sudo up
  • When connecting to the Admin Web UI for the first time, you’ll likely see a big message about the site’s security certificate not trusted. This is because the server has a self-signed certificate so you will need to bypass this error.
  • If you’re installing a system manually from scratch, make sure the time and date on your CentOS server are correct. Access Server generates certificates with both a start and expiration date, using the system time and date. If needed, install a Network
  • Time Protocol (NTP) client program on the server to correctly and automatically sync the time.
  • For configuring an Access Server without internet access, it requires contacting the OpenVPN team for an offline activation procedure.
  • If you experience slowness with the web interface or attempting license key activation, check that DNS resolution is working as expected (e.g.: pinging www.google.com should resolve this to an IP address)
  • The ovpn-init tool can be used to wipe all OpenVPN Access Server configurations with the -force option in case you make a mistake during initial setup. However, don’t use it unless you’re sure you want to delete all configuration and certificates to start over.