I got past the problem of Easy-RSA not finding the openssl-1.0.0.cnf by editing /etc/openvpn/easy-rsa/vars, but when I ran .build-ca, I got the following:
Can't load /root/.rnd into RNG
140421625237952:error:2406F079:random number generator:RAND_load_file:Cannot open file:../crypto/rand/randfile.c:88:Filename=/root/.rnd
Generating a RSA private key
...........................+++++
.............................................................................+++
I have read many articles on this, but it appears I don't even have the file .rnd anywhere on the system. Any help greatly appreciated, with my thanks in advance.
Trouble Building Easy-RSA 2.2 on Ubuntu 18.04
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
- OpenVpn Newbie
- Posts: 5
- Joined: Tue Nov 05, 2019 4:42 pm
-
- OpenVPN Protagonist
- Posts: 11137
- Joined: Fri Jun 03, 2016 1:17 pm
Re: Trouble Building Easy-RSA 2.2 on Ubuntu 18.04
You can safely ignore the problem.
I would recommend you use Easyrsa3: https://github.com/TinCanTech/easy-rsa/releases
I would recommend you use Easyrsa3: https://github.com/TinCanTech/easy-rsa/releases
-
- OpenVpn Newbie
- Posts: 5
- Joined: Tue Nov 05, 2019 4:42 pm
Re: Trouble Building Easy-RSA 2.2 on Ubuntu 18.04
I downloaded and untarred it, ran into the same problem:
$ ./easyrsa init-pki
init-pki complete; you may now create a CA or requests.
Your newly created PKI dir is: /home/tgvpadmin/easy-rsa-3.0.6/easyrsa3/pki
$ ./easyrsa build-ca
Using SSL: openssl OpenSSL 1.1.1 11 Sep 2018
Enter New CA Key Passphrase:
Re-Enter New CA Key Passphrase:
Generating RSA private key, 2048 bit long modulus (2 primes)
...........................................................................+++++
.........................................................................................................................................+++++
e is 65537 (0x010001)
Can't load /home/tgvpadmin/easy-rsa-3.0.6/easyrsa3/pki/.rnd into RNG
140693823164864:error:2406F079:random number generator:RAND_load_file:Cannot open file:../crypto/rand/randfile.c:88:Filename=/home/tgvpadmin/easy-rsa-3.0.6/easyrsa3/pki/.rnd
You are about to be asked to enter information that will be incorporated
into your certificate request.
...
I built the CA despite the error. Did I do something wrong? Is there something I should have done to prevent this from happening?
$ ./easyrsa init-pki
init-pki complete; you may now create a CA or requests.
Your newly created PKI dir is: /home/tgvpadmin/easy-rsa-3.0.6/easyrsa3/pki
$ ./easyrsa build-ca
Using SSL: openssl OpenSSL 1.1.1 11 Sep 2018
Enter New CA Key Passphrase:
Re-Enter New CA Key Passphrase:
Generating RSA private key, 2048 bit long modulus (2 primes)
...........................................................................+++++
.........................................................................................................................................+++++
e is 65537 (0x010001)
Can't load /home/tgvpadmin/easy-rsa-3.0.6/easyrsa3/pki/.rnd into RNG
140693823164864:error:2406F079:random number generator:RAND_load_file:Cannot open file:../crypto/rand/randfile.c:88:Filename=/home/tgvpadmin/easy-rsa-3.0.6/easyrsa3/pki/.rnd
You are about to be asked to enter information that will be incorporated
into your certificate request.
...
I built the CA despite the error. Did I do something wrong? Is there something I should have done to prevent this from happening?
-
- OpenVPN Protagonist
- Posts: 11137
- Joined: Fri Jun 03, 2016 1:17 pm