CA expired - seeking how avoiding connect to each client
Posted: Mon Jan 21, 2019 2:40 pm
Dear all,
We are facing a huge problem with our OpenVPN solution. Our ca.crt has expired this weekend.
After reading a lot this morning we managed to recreate a new ca.crt with same Modulus as the old one. But still the way to go seems to be to copy that new ca.crt to ALL the clients.
Our projects do not allow this easily, because they are worldwide, difficult access, etc
Can anyone thing of any possibility, ANY, which might avoid have to connect to all of them? We are open to lack security for a while until fix it pemanently (yes, lacking security is not in consonance with VPN... but, you know, desperate times...)
Thanks in advance
We are facing a huge problem with our OpenVPN solution. Our ca.crt has expired this weekend.
After reading a lot this morning we managed to recreate a new ca.crt with same Modulus as the old one. But still the way to go seems to be to copy that new ca.crt to ALL the clients.
Our projects do not allow this easily, because they are worldwide, difficult access, etc
Can anyone thing of any possibility, ANY, which might avoid have to connect to all of them? We are open to lack security for a while until fix it pemanently (yes, lacking security is not in consonance with VPN... but, you know, desperate times...)
Thanks in advance