CAs present on CERT manager are not trusted from pfSense
Normally the CAs imported/generated on the CERT manager of pfSense should be trusted to help avoid issues with cert validations in the code.
To be discussed if this should be an option on the CA section of cert manager or should be done by default.
Restructure OpenVPN settings directory layout
- Changed from /var/etc/openvpn[-csc]/<mode><id>.<file> to
- This keeps all settings for each client and server in a clean
- Move to CApath style CA structure for OpenVPN, which implements #9915
- Reused some code from trust store functions to generate the new CApath
format, since the layout is identical. Issue #4068