-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi,
Only private keys can be encrypted by openssl with a password. Certificates are basically public keys, therefore, password protecting them is completely pointless. EasyRSA does not offer any form of subsequent encryption. You can encrypt any file yourself using openssl. To determine if a private key is password protected, simply look at the HEADER line in the file, which will read as: -----BEGIN ENCRYPTED PRIVATE KEY----- or -----BEGIN PRIVATE KEY----- For help with OpenVPN, there are two (possibly more) passwords, of which, it is not clear which type you mean. There is a password to unlock an encrypted private key. This requires OpenVPN option --askpass, to query for the password. There are also login/connection passwords. All of which are configured by the server. These passwords require OpenVPN options such as --auth-user-pass in the client config, to query for a username and password. And others for tokens and OTP. Regards R -----BEGIN PGP SIGNATURE----- Version: ProtonMail wsBzBAEBCAAnBQJkBjfFCRBPl5z2a5C4nRYhBAm8PURno41yecVVVU+XnPZr kLidAADiYQf/f/Z+UhCAgO8rewCfPJr+kqGk+GUXKwrAhGZkWO09PngTk+X+ ZcvTMwpkd4iNG8lfUxE25+e5vs9hGx4QLDyLQBlhK13c941jVUr2+dh/iRGI yfXZIOLwb7Z4HL95o/QP7FG5Ea/hyQ1mrjHNG9ohzO/pdIU+aAEEzQ672AnH 5v2yn6Shnl/5JidoTtm5xwP15TLrPLWueB+vh22E5tsiJdXdpgwMvkY8eHcE gyMGmXUNJ0yRvxV3mLZdSGlSKGAef2JyXOlh2ztwKo0HIDYE60CUxDSdf3gX DRCSvlNBzlk1k5VlHZUmReDc7/ZnOeGD/1xHQ2Ct6f+fQam9OOKE6Q== =wUp3 -----END PGP SIGNATURE-----
publickey - tincantech@protonmail.com - 0x09BC3D44.asc
Description: application/pgp-keys
publickey - tincantech@protonmail.com - 0x09BC3D44.asc.sig
Description: PGP signature
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
