Flavio
2009-12-02 13:30:52 UTC
Hello,
I searched a lot using Google, and browsing the OpenVPN documentation
but I still can't
definitely remove an user from my OpenVPN server. I use Gentoo Linux
and the version I
have installed is 2.1_rc15.
The first thing I did is to go to the /usr/share/openvpn/easy-rsa
directory and perform the following command:
source ./vars
./revoke-full username
But now, even though the user can't connect to my openvpn server,
files (i.e. keys and certificates and *.pem file)
still remain on the server. I could remove them manually, sure, but
I'm not sure if it is correct.
For example, there are a lot of XX.pem files and I don't know which
xx.pem file is "owned" by "username_x", so
I can't delete an xx.pem file if I'm not sure it is related to a
certain unallowed user.
I also read I should issue something like "openvpn --crl-verify
../crl.pem", but I still get a lot of trouble..
(interface is missing and many more errors).
Please, could you tell me how to clean my openvpn server from keys and
certificates no longer useful?
Thank you,
Flavio
I searched a lot using Google, and browsing the OpenVPN documentation
but I still can't
definitely remove an user from my OpenVPN server. I use Gentoo Linux
and the version I
have installed is 2.1_rc15.
The first thing I did is to go to the /usr/share/openvpn/easy-rsa
directory and perform the following command:
source ./vars
./revoke-full username
But now, even though the user can't connect to my openvpn server,
files (i.e. keys and certificates and *.pem file)
still remain on the server. I could remove them manually, sure, but
I'm not sure if it is correct.
For example, there are a lot of XX.pem files and I don't know which
xx.pem file is "owned" by "username_x", so
I can't delete an xx.pem file if I'm not sure it is related to a
certain unallowed user.
I also read I should issue something like "openvpn --crl-verify
../crl.pem", but I still get a lot of trouble..
(interface is missing and many more errors).
Please, could you tell me how to clean my openvpn server from keys and
certificates no longer useful?
Thank you,
Flavio