Project

General

Profile

Actions
Copy link

Bug #13077

closed

remote-cert-tls client set in configuration regardless of Client Certificate Key Usage Validation option (after server restart only!)

Added by Michael Ruder about 2 years ago. Updated about 2 years ago.

Status:
Duplicate
Priority:
Normal
Assignee:
-
Category:
OpenVPN
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Default
Affected Version:
Affected Architecture:
amd64

Description

Regardless of the newly introduced setting "Client Certificate Key Usage Validation", the remote-cert-tls client ends up in the configuration if the OpenVPN server instance is restarted (via Status=>OpenVPN or other means).

However when saving the configuration from VPN=>OpenVPN (after changing anything, for instance only the log level) the line is not there, unless the option is ticked.

Someone else noticed this, but it was turned down as the root cause probably was not identified there: #13056

Tested with pfSense 2.6.0 on AMD64.

Related issues

Has duplicate Regression #13056: OpenVPN ``remote_cert_tls`` option does not behave correctly when enabled and later disabledResolvedViktor Gurov

Actions
Actions
Copy link

Also available in: Atom PDF