OpenVPN Support Forum

Posted: **Tue Jun 25, 2019 11:32 am**

Hello.

I have a problem, I lost the easy-rsa with the server certificates. Currently, I have no chance recovery tahat. I have file and CA.crt and user cert and key. Is it possible to recover it?

ca /etc/openvpn/easy-rsa/keys/ca.crt # generated keys
cert /etc/openvpn/easy-rsa/keys/server.crt
key /etc/openvpn/easy-rsa/keys/server.key # keep secret
dh /etc/openvpn/easy-rsa/keys/dh1024.pem

Please help

Posted: **Tue Jun 25, 2019 11:41 am**

If you have lost your ca.key then start a new PKI from scratch.

Posted: **Tue Jun 25, 2019 12:01 pm**

old client can connect to new PKI?

Posted: **Tue Jun 25, 2019 12:04 pm**

If you have lost your ca.key then your PKI is of no further use.

Your current VPN will continue to work but you cannot sign any new certificates.

Posted: **Tue Jun 25, 2019 12:15 pm**

OK but I don't have server.crt, server.key and dh1024.pem. So if I generate new PKI and config then old user connected to new VPN Server ?

Posted: **Tue Jun 25, 2019 12:30 pm**

If you make a new PKI with a new server then your client will not be able to connect until the client has a new certificate and copy of the new ca.crt

Posted: **Wed Jun 26, 2019 9:21 am**

ok. I have ca.key, how I can restore CA.crt?

Posted: **Wed Jun 26, 2019 2:49 pm**

Every client and server using the same PKI has a copy of the ca.crt

OpenVPN Support Forum

Lost data

Lost data

Re: Lost data

Re: Lost data

Re: Lost data

Re: Lost data

Re: Lost data

Re: Lost data

Re: Lost data