OpenBSD // OpenVPN // EasyRSA || first steps

First of all: Read the fckn manual.
Preparing the server

# ./easyrsa init-pki
# ./easyrsa build-ca nopass
# ./easyrsa gen-req SERVERID nopass
# ./easyrsa sign-req server SERVERID
# ./easyrsa gen-crl
# ./easyrsa gen-dh

Preparing a client

# ./easyrsa genreq CLIENTID
# ./easyrsa sign-req client CLIENTID

Revoking a client

# ./easyrsa revoke CLIENTID
# ./easyrsa gen-crl

You run into problems? Check both servers AND CLIENTS log files.

Leave a Reply

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.