Bug #16736: Openvpn client export fails to show 'exportable' clients when server uses a different CA for "Peer Certificate Authority" - pfSense Packages - pfSense bugtracker

Actions

Copy link

Bug #16736

closed

Openvpn client export fails to show 'exportable' clients when server uses a different CA for "Peer Certificate Authority"

Added by Tod L 9 days ago. Updated 9 days ago.

Status:

Rejected

Priority:

Normal

Assignee:

Category:

OpenVPN Client Export

Target version:

Start date:

Due date:

% Done:

Estimated time:

Plus Target Version:

Affected Version:

Affected Plus Version:

Affected Architecture:

Description

Openvpn client export fails to show 'exportable' clients

I use a different peer authority for authentication (Windows CA for smartcard authentication). The clients used to show up in versions prior to 1.9.8, although I can't say for sure which version.

The text at the bottom of the export says:

"If a client is missing from the list it is likely due to a CA mismatch between the OpenVPN server instance and the client certificate"

This is the problem. It needs to look at the CA in the "Peer Certificate Authority" instead of the CA used to create the server certificate.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Packages

Custom queries

Bug #16736

Openvpn client export fails to show 'exportable' clients when server uses a different CA for "Peer Certificate Authority"

Updated by Jim Pingle 9 days ago