Menu
What's new
By:
Filters Better Search

How Do I Revoke a Client Cert ?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

saytr79

saytr79

Occasional Visitor
So i've been playing around with OpenVPN and have figured most things out but one of the last two things i've been trying to work out is how to revoke a cert ( client1.ovpn ) ?

I've tried to run the revoke command below per the "howto" on OpenVPN's site but no luck.

vars
revoke-full client1


I'm somewhat new to running scripts via "Custom Configuration" on my router so i'm pretty sure i'm doing something wrong.

Thoughts ? Thanks in advance.
 
this involves adding the key/cert pair to a CRL file. to do this may require storing the crl file on /jffs and adding a symlink to the new CRL via init-start script. check the openvpn howto's regarding the CRL file usage.
 
sinshiva said:
this involves adding the key/cert pair to a CRL file. to do this may require storing the crl file on /jffs and adding a symlink to the new CRL via init-start script. check the openvpn howto's regarding the CRL file usage.
Click to expand...

I figured as much but wasnt clear on how to mount the jffs and create the crl. I had already went to the howto Octopus suggested above to get the script listed in my initial post but was at a loss on how to mount the storage on the router to run the script.

I will dig around a bit more now that i know i need to mount the jffs. Thanks Sinshiva.
 
saytr79 said:
I figured as much but wasnt clear on how to mount the jffs and create the crl. I had already went to the howto Octopus suggested above to get the script listed in my initial post but was at a loss on how to mount the storage on the router to run the script.

I will dig around a bit more now that i know i need to mount the jffs. Thanks Sinshiva.
Click to expand...

You can put revoke cert in /mnt or /jffs
Code: 
crl-verify /mnt/[B]rt-ac68u[/B]/openvpn/crl.pem
crl-verify /jffs/openvpn/crl.pem
This is an example. rt-ac68u is label on my usb
 
Last edited:
octopus said:
You can put revoke cert in /mnt or /jffs
Code: 
crl-verify /mnt/[B]rt-ac68u[/B]/openvpn/crl.pem
crl-verify /jffs/openvpn/crl.pem
This is an example. rt-ac68u is label on my usb
Click to expand...

Thank you very much Octopus. I will play around with it when i get home.
 
You must log in or register to reply here.

Similar threads

N
Solved Unable to connect to VPN server with self-signed certificate
Replies
0
Views
456
nino_070
N
A
Solved Need help setting up DDNS for cloudflare
Replies
5
Views
2K
Eodyne
E
A
Setting up OpenVPN client
Replies
10
Views
1K
ColinTaylor
C
M
Has Killswitch Been 100% Fixed for 2024?
Replies
5
Views
753
m0rF1uS
M
C
How can I do this.. Router VPN Client to Server 2
Replies
3
Views
379
ComputerSteve
C
Similar threads
Thread starter Title Forum Replies Date
A Bug in client list? Asuswrt-Merlin 1
S Prevent client from connecting to router but allow connection to internet via access point Asuswrt-Merlin 4
H add_wlc_event_tbl(1040): client table was full Asuswrt-Merlin 0
A Restart WireGuard client when fails Asuswrt-Merlin 5
A Inconsistencies and broken behavior with client status and DHCP leases - AX86UP 388.6_2 Asuswrt-Merlin 17
B Solved Client list in Network Map is empty and changing the System Log verbosity in the web GUI does nothing Asuswrt-Merlin 7
R Solved AiMesh Node client connection issue Asuswrt-Merlin 7
C How can I do this.. Router VPN Client to Server 2 Asuswrt-Merlin 3
G VPN Client with Public IP, split tunnel web server over VPN and other traffic not on the VPN Asuswrt-Merlin 4
D GT-AX6000 - 3004_388.6_0 - Wireguard client - No Access to Servers local LAN Asuswrt-Merlin 5

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 564 (members: 19, guests: 545)
Top