Certificate reissue/renewal

Started by WyrdZ, April 16, 2024, 02:15:29 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 16, 2024, 02:15:29 PM
Hello,

I have configured an OpenVPN instance with clients certificates from a fresh new internal CA. The openvpn server certificate is also generated from that CA.

To my surprise, I was not able to see any controls in the UI to reissue/renew an expired certificate. Moreover, I wasn't able to find anything on the internet apart from this old topic https://forum.opnsense.org/index.php?topic=24900.0

Any advices would be welcome. Perhaps I should open a new feature request? Using `openssl x509 -x509toreq -in old.crt -signkey private.key` and then sign the request is clearly a non-starter, since both certificates (the expired one and the new one) will remain in the long "Certificates" list, with the new one missing the private key...

Thank you.
April 16, 2024, 02:17:25 PM #1
Well actually, I found this one in the feature request https://github.com/opnsense/core/issues/6646

I'll try to create a new feature request that would fulfill the requirements so it doesn't get automatically closed.
Print
Go Up Pages1
User actions