I am using user/pass authentication so no need to use client certificates.
My config is as;
Code: Select all
client
dev tun
proto tcp
remote my-server-2 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
tls-auth ta.key 1
comp-lzo
verb 6
auth-user-pass
New created file,
Code: Select all
client
dev tun
proto tcp
remote myserver-2 1194
resolv-retry infinite
nobind
persist-key
persist-tun
<ca>
-----BEGIN CERTIFICATE-----
xxxx
-----END CERTIFICATE-----
</ca>
<key>
-----BEGIN PRIVATE KEY-----
xxx
-----END PRIVATE KEY-----
</key>
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
xxxxxxxxxxxxx
-----END OpenVPN Static key V1-----
</tls-auth>
key-direction 1
comp-lzo
verb 6
auth-user-pass
But on windows openvpn client, I receive
Options error: If you use one of --cert or --key, you must use them both
I dont have client certificate. because i am using username auth..
I have following lines on my serverside also..
Code: Select all
duplicate-cn
plugin /usr/lib/openvpn/openvpn-auth-ldap.so /etc/openvpn/auth/auth-ldap.conf
client-cert-not-required
As I wrote, this new config works on mobile clients.. but not on windows side..
I'd be glad if somebody helps..