Openvpn question
Octavian Ionescu
itavy at itavy.com
Sun May 10 08:35:13 UTC 2009
Darryl Hoar wrote:
> Installed Openvpn on my freebsd server. Had to revoke a certificate
> already. The Openvpn howto guide says to add crl-verify crl.pem to the
> server config script. Is that the openvpn server config script or the
> openssl config script (I self generate certificates) ?
>
> Been googling and searching but can't find a definitive answer.
>
> Thanks and I know this is not strictly a Freebsd question.
>
>
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
read this,
http://openvpn.net/index.php/documentation/howto.html#revoke
you have to revoke the certificate(s) using the scripts and adding
"crl-verify crl.pem" to the server configuration file.
first time when you add that line you have to restart the openvpn
daemon, afterthat it will check every time the crl.pem to see if the
certificate is revoked or not.
--
Best regards,
Octavian
More information about the freebsd-questions
mailing list