Hi Michael,
I don't pretend to be a crypto guru, but as long as the client's certificate is
signed by the server's CA it is good to go as long as it is not revolked in
some way. Removing the server's copy of the client's credentials does not
prevent client certificate authentication.
Given th
Lonnie just wanting to understand why disabling is better than removing it.
Would you not give the credentials to a single user only and revoke when they
leave the organisation? Is my thinking wrong here?
After a period of time, the list could get quite unmanageable when people come
and go.
Re
Hi Michael(s),
The OpenVPN Server tab allows specific clients to be disabled (Client
Certificates and Keys: section), not a CRL but basically does the same with
OpenVPN's hooks.
Removing a client from the list would not be good, as it was created and may
have been distributed, disabling it kee
Am 02.08.2013 um 08:55 schrieb Michael Knill
:
> To the group
>
> I set up a number of OpenVPN users for one of my customers and am interested
> to know if there are any plans for enabling the deletion of user certs and
> keys from the web GUI?
That would be a nice addition, I would also hav
To the group
I set up a number of OpenVPN users for one of my customers and am interested to
know if there are any plans for enabling the deletion of user certs and keys
from the web GUI?
Also is there any options with OpenVPN for a username and password only rather
than certificate? I realise
