Page 1 of 1
Import existing OpenVPN CA and Server files
Posted: Fri Mar 08, 2024 11:21 pm
by itay.gurvich
I have a use case where I'm trying to import ca.crt/key and server.crt/key files to a softether VPN in OpenVPN Clone mode so that clients that used the original OpenVPN server could just move to the softether VPN server seamlessly. I'm using the vpncmd in the container version and tried adding those, but the VPN client keeps showing:
Code: Select all
VERIFY ERROR: depth=0, error=self signed certificate
Whats the process for importing these files and making softether to use them? I also wish to run the VPN listen on 443/TCP
Re: Import existing OpenVPN CA and Server files
Posted: Sat Mar 09, 2024 1:36 am
by solo
It is supported in SE v5.
Code: Select all
vpncmd localhost:443 /server /password:123 /adminhub:VPN /cmd UserCertSet user1 /LOADCERT:z:\client.crt
Connection has been established with VPN Server "localhost" (port 443).
You have administrator privileges for the entire VPN Server
The Virtual Hub "VPN" has been selected.
VPN Server/VPN>UserCertSet user1 /LOADCERT:z:\client.crt
UserCertSet command - Set Individual Certificate Authentication for User Auth Type and Set Certificate
The command completed successfully.
Re: Import existing OpenVPN CA and Server files
Posted: Sat Mar 09, 2024 1:49 am
by itay.gurvich
solo wrote: ↑Sat Mar 09, 2024 1:36 am
It is supported in SE v5.
Code: Select all
vpncmd localhost:443 /server /password:123 /adminhub:VPN /cmd UserCertSet user1 /LOADCERT:z:\client.crt
Connection has been established with VPN Server "localhost" (port 443).
You have administrator privileges for the entire VPN Server
The Virtual Hub "VPN" has been selected.
VPN Server/VPN>UserCertSet user1 /LOADCERT:z:\client.crt
UserCertSet command - Set Individual Certificate Authentication for User Auth Type and Set Certificate
The command completed successfully.
Will this import the server.crts? or is the entire idea is to migrate all the client certs into the server?
Re: Import existing OpenVPN CA and Server files
Posted: Sat Mar 09, 2024 2:44 am
by solo
no
yes
Re: Import existing OpenVPN CA and Server files
Posted: Mon Mar 11, 2024 3:08 pm
by itay.gurvich
solo wrote: ↑Sat Mar 09, 2024 2:44 am
no
yes
I keep getting:
Code: Select all
Error occurred. (Error code: 29)
Object not found.
I'm in the same folder as the cert files and it autocomplete them so I know they are there. Do I need to create a user first? Is there a guide for a full openpvn server and client migration?