OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

Is it possible to roll out a single cert for all clients?

https://forums.openvpn.net/viewtopic.php?t=9058

Page 1 of 1

Is it possible to roll out a single cert for all clients?

Posted: Thu Oct 20, 2011 5:22 am
by joshcole
I know that you can configure openvpn to not require a certificate and for example require login credentials instead. I am trying to configure openvpn to authenticate against our active directory server but wanted to know if it would be possible to use a certificate also but to roll out a single cert instead of having to generate one for each end user. I know that openvpn has created a really nice package that can accomplish this but we cannot afford licensing for it. It would be much easier to roll the vpn client out and start getting folks connected if I could use a single client cert. Any feedback is much appreciated!

Thank you!

Re: Is it possible to roll out a single cert for all clients

Posted: Thu Oct 20, 2011 5:38 am
by Mimiko
Use "--duplicate-cn" in server's config file.

Re: Is it possible to roll out a single cert for all clients

Posted: Thu Oct 20, 2011 5:54 am
by joshcole
This makes sense. Thank you. I will generate a new certificate and key and roll that out.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/