Re: [Openvpn-users] How to check if OpenVPN server is working properly?

Thu, 23 Feb 2023 12:53:10 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi,

------- Original Message -------
On Thursday, February 23rd, 2023 at 17:34, David Sommerseth 
<dazo+open...@eurephia.org> wrote:

> On 23/02/2023 17:43, Bo Berglund wrote:
> 

<Large-snip>

Note: The suggestions made by David Sommerseth above are also very useful.


> > Questions:
> > 
> > Can I extend the expiration time of my server and the cleints too before 
> > actual
> > expiration such that this will not happen on Oct 24, 2027?
> 
> 
> Yes, you can issue new certificates using the same private and public
> keys (essentially re-using the CSR). This will issue a new certificate
> with a new expiry date. Since the certificate and CA is the same, it
> just works as before.
> 

Yes, again with easyrsa:

    easyrsa [optional: --days=3650] renew <server/client-name>

This will create a new certificate from the original signing request.
This renewed certificate uses the original entity private key.

Make sure that you use EasyRSA version 3.1+, otherwise 'renew' will
not use the original key.  Which means you also have to distribute
that entity NEW private key over a secure medium.

Regards


> --
> kind regards,
> 
> David Sommerseth
> OpenVPN Inc
> 
> 
> 
> 
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/openvpn-users
-----BEGIN PGP SIGNATURE-----
Version: ProtonMail

wsBzBAEBCAAnBQJj99GTCRBPl5z2a5C4nRYhBAm8PURno41yecVVVU+XnPZr
kLidAACe1gf/QjC99pFA7BsTOU9P7Kfoo5RuSXMsylyJxBKrLflrV0wdCSKH
KBXlJEncvWErXkkVibFaqAmBdNBz8ouol5+dhvvob8sxTVcD2kSbD6Az5Fy6
rqUJjJNyDLO/VfUG57RCXc4QsnEfZ5dvz6RlM9uYrXD6KuvtYgrX4/2v28FT
UDQ7DIWsYxjwQ2VzQE/dHvnH8EnvzxqbsO/CvMqmxgJQWeqEXSb0qxw887ZN
+gg9JZKTwIBZlmo9AaGMM2JPlo4EDDhM8+wjeXAcJu/MYEe3Y/6nI/dJ+9lU
aFiF43k7WWSDV42MJFMjWk76eJykz3pp3z4LbP+mOzxUE1rGTdIeLQ==
=Qect
-----END PGP SIGNATURE-----

Attachment: publickey - tincantech@protonmail.com - 0x09BC3D44.asc
Description: application/pgp-keys

Attachment: publickey - tincantech@protonmail.com - 0x09BC3D44.asc.sig
Description: PGP signature

_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users






















					Reply via email to