I'm running into an interesting problem with OpenVPN on OPNsense 25.7. My server certificate expired a while ago. I have since renewed this and this is reflected in the Trust store. However, when exporting the VPN client configs, it still tries to use the expired certificate. If I manually replace this with the new one in the client configs, it seems the server is still presenting the expired certificate. I have restarted the service and swapped out the server certificate option but it seems to be holding onto the old, expired certificate for some reason.
Any thoughts?
Oh, the CA has also expired. Amazing. Why is this defaulted to 2 years :(
Can be closed.