ExpressVPN anyone?

[cloudfrog]

Signed up for expressvpn, and trying to get it working on OPNsense 24.1.8.

Express doesn't have opnsense in there list of supported platforms so their support immediately showed me the door.

I found a few threads on others using this combo.   Overall it seems some people have it working, but haven't seen anything recent.


I downloaded the generic linux openvpn client config and tried to apply the settings in the gui.  It is complaining about certs no matter what i do.   

In the open vpn config i have these:
<cert>,  <key>,  <ca>,   and <tls-auth>

I went to
1. System -> Trust -> Authorities.   Added a new authority.  (copy paste the <ca>  cert). and left the key blank.

2. System -> Trust -> Certificaes.  Add new cert   using the <cert> and <key> from the config.

3. VPN-> OpenVPN -> Instances -> Static Keys tab.   Added a new static key using the <tls-auth> cert.   For mode i chose "auth".. other option was crypt

4. VPN-> OpenVPN -> Instances -> Instances tab. and added a new  instances. 
* Trust -> Certificate:    Chose the client cert i added earlier
* TLS Static key,  i chose the static key i imported.

When i go to save,  it ways "Unable to locate a CA for this certificate."  next to the trust certificate field.

[alacercogitatus]

Hello! I know this has been dormant for a very long time, but I figured out the answer, and wanted to post to make sure that others finding this found a solution.

OPNsense Version: 24.7.5-amd64
While configuring the OpenVPN instance, there is a toggle in the top left "Advanced Mode". Toggling this will show an additional drop down in the "Trust" section that has the CA to use.