OpenVPN - TLS verify error
-
VPN has been working 2 weeks ago.
Today connecting fails with a verify error:
VERIFY ERROR: depth=0, error=CRL has expired: CN=MBP
OpenSSL: error:1417C086:SSL routines:tls_process_client_certificate:certificate verify failed
...The device config was created on Aug 16, 2022.
Does the CRL not update automatically?
Is there a default expiry? I don't see one set in the config file.
Ex:
EASYRSA_CRL_DAYS=3650 (10 yrs)Looking at the keys dir in File Manager, it's dated Aug of last year. So is that a 1 year expiry and no update?
-
The current cert expiration is indeed set to 10 years: https://git.cloudron.io/cloudron/openvpn-app/-/blob/master/easyrsa-vars#L15
Can you download the .opvn file and double check the expiration there?
-
The current cert expiration is indeed set to 10 years: https://git.cloudron.io/cloudron/openvpn-app/-/blob/master/easyrsa-vars#L15
Can you download the .opvn file and double check the expiration there?
-
The current cert expiration is indeed set to 10 years: https://git.cloudron.io/cloudron/openvpn-app/-/blob/master/easyrsa-vars#L15
Can you download the .opvn file and double check the expiration there?
-
R robi marked this topic as a question on
-
R robi has marked this topic as solved on
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login