OPNsense Forum
Archive => 18.1 Legacy Series => Topic started by: hilfubsi on February 17, 2018, 07:46:02 pm
-
I would like to setup an OpenVPN server on my OPNsense so I can encrypt my connection when using public WiFis.
I also have Letsencrypt setup with the os-acme-client plugin.
Can I use Letsencrypt for my OpenVPN server certificate? It seems the only option is to self-sign the OpenVPN certificate in the wizard.
-
Theoretically, it might be possible, but you don't want to do that. You'll be better off with your own CA and sign your own certs.
-
Yes and No - Let's Encrypt has in my opinion no client certificates which is a problem however in case of password authentication it would work.
The problem is that I see no advantage since OpenVPN does not rely on a preinstalled certificates.