Hi,
I'm running OpenVPN at my Windows Server 2016 Standard.
I did receive error's all the time regarding this when I did try to generate keys:
WARNING: can't open config file: /etc/ssl/openssl.cnf
I did try to un-install and re-install OpenVPN server but I did get the same error all the time.
So what I did was that I did move the "C:\Program Files\OpenVPN\easy-rsa\openssl-1.0.0.cnf" file to "C:\etc\ssl\" and I did rename it to openssl.cnf now I don't get any error messages and everything seems to work.
Is this good? or is my VPN connections at risk?
Did move the *.cnf file, is the keys still safe?
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
- OpenVpn Newbie
- Posts: 5
- Joined: Wed Jul 19, 2017 3:54 pm
-
- OpenVPN Protagonist
- Posts: 11137
- Joined: Fri Jun 03, 2016 1:17 pm
Re: Did move the *.cnf file, is the keys still safe?
There is no security risc associated with your work around (I did the same myself).
But you could upgrade to EasyRSA-3.0.0-rc2 which works correctly.
(That is the only version which will work with windows)
But you could upgrade to EasyRSA-3.0.0-rc2 which works correctly.
(That is the only version which will work with windows)
-
- OpenVpn Newbie
- Posts: 5
- Joined: Wed Jul 19, 2017 3:54 pm
Re: Did move the *.cnf file, is the keys still safe?
Ok, thanks!TinCanTech wrote:There is no security risc associated with your work around (I did the same myself).
But you could upgrade to EasyRSA-3.0.0-rc2 which works correctly.
(That is the only version which will work with windows)
What's up with that version, the 3.0.0-rc2 it has not been updated since 2014.