key and cert building for vpns

Question

I have successfully added a vpn on a droplet. It worked although there may be some leakage (separate issue). I initially set this up to work on a laptop. I want to create the keys etc to work on an Android device so in my console I ran the following :

root@droplet:/etc/openvpn/easy-rsa# ./build-key android

Instead of being asked the questions concerning attributes etc - I got:

’ Please edit the vars script to reflect your configuration,
then source it with “source ./vars”.
Next, to start with a fresh PKI configuration and to delete any
previous certificates and keys, run “./clean-all”. etc’

If I check the directory /etc/openvpn/easy-rsa/keys there are no files relating to the new certificates.

I’m assuming the top command won’t delete any of the files the server needs? What am I doing wrong?

Answer 1

pubgapps February 8, 2016

OK, so solved this.

One needs to REinitialise the PKI:

change directories to:

cd /etc/openvpn/easy-rsa

THEN re-initialize the PKI (Public Key Infrastructure). Pay attention to the dot (.) and space in front of ./vars command. That signifies the current working directory (source).

. ./vars

Follow the rest of the instructions and it creates the new profile keys and certificates.

Reply Report

Related

Question

key and cert building for vpns

Related

Leave a comment

Looking for something else?

Sign up for our newsletter

Related

Question

key and cert building for vpns

Related

Leave a comment

Related

question

Ubuntu 14.4 and openvpn as -- Gui not accessible

question

How can i forward Ports with OpenVPN?

question

OpenVPN routing configuration client side

question

How to open SSH ports on Ubuntu 16.04?

Looking for something else?