Paid certificate and Openvpn 2.4.10 issue

Scripts to manage certificates or generate config files

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
mazak21
OpenVpn Newbie
Posts: 1
Joined: Wed Apr 14, 2021 8:46 am

Paid certificate and Openvpn 2.4.10 issue

Post by mazak21 » Wed Apr 14, 2021 8:55 am

Hello,

I'm using OpenVPN 2.4.10 on Centos 7
Everything works fine until I tried to deploy the certificate signed by external authority.

When placed ca cert file inside OpenVPN dir and point Openvpn to it inside config file I start receiving errors when starting OpenVPN client.

I generated csr file using openssl and providing the domain of the machine where the openvpn is running.
openssl req -newkey rsa:2048 -keyout ovpn.somedomain.com.key -out ovpn.somedomain.com.csr

CN provided with the name of the domain -> ovpn.somedomain.com.

Any idea what I'm doing wrong and maybe some hind on how to debug it as journalctl is kind of enigmatic.

journalctl -b -f -p 7 -u openvpn\@server.service
Apr 14 01:32:55 sv-str-vpn004 systemd[1]: Starting OpenVPN Robust And Highly Flexible Tunneling Application On server...
Apr 14 01:32:55 sv-str-vpn004 openvpn[18285]: Options error: Unrecognized option or missing or extra parameter(s) in server.conf:83: DigiCertCA.crt (2.4.10)
Apr 14 01:32:55 sv-str-vpn004 openvpn[18285]: Use --help for more information.
Apr 14 01:32:55 sv-str-vpn004 systemd[1]: openvpn@server.service: main process exited, code=exited, status=1/FAILURE
Apr 14 01:32:55 sv-str-vpn004 systemd[1]: Failed to start OpenVPN Robust And Highly Flexible Tunneling Application On server.
Apr 14 01:32:55 sv-str-vpn004 systemd[1]: Unit openvpn@server.service entered failed state.
Apr 14 01:32:55 sv-str-vpn004 systemd[1]: openvpn@server.service failed.

Thank You in advance

Post Reply