On 10/04/2014 21:13, kol wrote: > How do you revoke a CA certifate? Export the CRL from whatever you use to manage your CA (I use TinyCA, I've no experience of using pfSense, this whole thing might well be even easier if you use pfSense).
In pfSense: System -> Cert Manager -> Certificate Revocation -> + paste in the CRL. It way have "In Use: NO". VPN -> OpeNVPN - server -> Edit -> Cryptographic Settings -> Peer Certificate Revocation List - select the CRL. -- Pete Boyd Open Plan IT - http://openplanit.co.uk The Golden Ear - http://thegoldenear.org _______________________________________________ List mailing list List@lists.pfsense.org https://lists.pfsense.org/mailman/listinfo/list
