On 07.01.24 06:50, Peter Davis via Openvpn-users wrote:
As you can see, I have moved the files to /etc/openvpn/server directory.
Correction: You have copied SOME files to that directory, namely, those that the server needs.
Now if I ignore the warning message above, what is the risk?
Then you'll lose the content of those files that only the *CA* needs, and thus the ability to continue operating that (first) CA, in particular:
-- You'll be unable to create a CRL, whether it is to actually revoke a cert or just to replace an expiring one. -- When the (first) server cert expires, you'll be unable to have a new one created by the same CA, thus requiring a config change on *every* client - wherever and in whosever hands it is - before it'll be able to connect to the VPN again. Kind regards, -- Jochen Bern Systemingenieur Binect GmbH
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users