i am using a windows openvpn server, and a windows client.
in the client.ovpn config file, there are 4 markers: <ca>, <cert>, <key>, and <tls-auth>
<tls-auth> should have the contents of ta.key?
what should be in <cert>? is it the contents of server.crt? or client.crt?
how about <key>? is it from server.key or client.key?
thanks
what should be included in the client ovpn markers?
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
goldduo
- OpenVpn Newbie
- Posts: 16
- Joined: Sat Jan 09, 2021 10:12 am
-
goldduo
- OpenVpn Newbie
- Posts: 16
- Joined: Sat Jan 09, 2021 10:12 am
Re: what should be included in the client ovpn markers?
my understanding is the <cert> and <key> markers are not required if i specify file paths to client.crt and client.key??
so to connect, the client sends ca.crt, asking for specific ip and port number. the server recognizes the ca.crt, and knows that this is a client. now how does that server authenticate the client? it automatically reaches into the default relative path openvpn\easy-rsa\pki to grab and compare the client.crt, and client.key?
so to connect, the client sends ca.crt, asking for specific ip and port number. the server recognizes the ca.crt, and knows that this is a client. now how does that server authenticate the client? it automatically reaches into the default relative path openvpn\easy-rsa\pki to grab and compare the client.crt, and client.key?