I have been trying to set up an OpenVPN server on debian 8.3. Everything has been going fine until I get to the step where I create the ca and private key.
I have read that the steps to do this are as follows:
1.
Code: Select all
sudo su - root
Code: Select all
cd /etc/openvpn/easy-rsa/
Code: Select all
source ./vars ## I have also tried using `. ./vars` without success
Code: Select all
./clean-all
Code: Select all
./build-ca
Code: Select all
./build-key-server server
or, this:Please source the vars script first (i.e. "source ./vars")
Make sure you have edited it to reflect your configuration.
the contents of my vars file are as follows:Please edit the vars script to reflect your configuration,
then source it with "source ./vars".
Next, to start with a fresh PKI configuration and to delete any
previous certificates and keys, run "./clean-all".
Finally, you can run this tool (pkitool) to build certificates/keys.
Code: Select all
export KEY_COUNTRY="US"
export KEY_PROVINCE="Anystate_USA"
export KEY_CITY="Anytown_USA"
export KEY_ORG="whatever"
export KEY_EMAIL="admin@tryingtogetitright.net"
export KEY_OU="whatevervpn"
Code: Select all
openvpn --version
OpenVPN 2.3.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Nov 12 2015
library versions: OpenSSL 1.0.1k 8 Jan 2015, LZO 2.08
Originally developed by James Yonan
Copyright (C) 2002-2010 OpenVPN Technologies, Inc. <sales@openvpn.net>
Code: Select all
build-ca build-key build-key-server clean-all list-crl openssl-1.0.0.cnf revoke-full whichopensslcnf
build-dh build-key-pass build-req inherit-inter openssl-0.9.6.cnf openssl.cnf sign-req
build-inter build-key-pkcs12 build-req-pass keys openssl-0.9.8.cnf pkitool vars