OPNsense Forum

Archive => 18.1 Legacy Series => Topic started by: hilfubsi on February 17, 2018, 07:46:02 pm

Title: Can I use the Letsencrypt cert with the OpenVPN server?
Post by: hilfubsi on February 17, 2018, 07:46:02 pm

I would like to setup an OpenVPN server on my OPNsense so I can encrypt my connection when using public WiFis.

I also have Letsencrypt setup with the os-acme-client plugin.

Can I use Letsencrypt for my OpenVPN server certificate? It seems the only option is to self-sign the OpenVPN certificate in the wizard.

Title: Re: Can I use the Letsencrypt cert with the OpenVPN server?
Post by: elektroinside on February 17, 2018, 08:32:03 pm

Theoretically, it might be possible, but you don't want to do that. You'll be better off with your own CA and sign your own certs.

Title: Re: Can I use the Letsencrypt cert with the OpenVPN server?
Post by: fabian on February 17, 2018, 09:11:33 pm

Yes and No - Let's Encrypt has in my opinion no client certificates which is a problem however in case of password authentication it would work.
The problem is that I see no advantage since OpenVPN does not rely on a preinstalled certificates.