Using Open'VPN with certs and key verification only

[ags]

Is it possible to setup OpenVPN on the Asus RT-N66U router so that it relies only on a valid certificate and keys to establish a connection? In other words, I have a laptop under my control and would like to establish a VPN connection to my LAN without prompts for username/password. I've found some info online but it appears they are referencing OpenVPN under Linux in general (they reference settings that are not available to me in my Asus 3.0.0.4.376_1071 firmware).

Also, if this configuration is possible, are there any security issues this will create that I should be aware of? The only one I can see is if my laptop is physically no longer under my control, *and* if the thief can login (with my passwword) they will then be able to connect to my LAN VPN without authorization. Am I missing something else? Thanks.

 

[ags]

Bump. No one? No ideas on how having a cert generated by the OpenVPN server (on the Asus router) be sufficient to log in without further authentication? Or why that would be a bad idea (other than if my laptop is physically out of my control, *and* the login/screenlock password is cracked, *and* I don't revoke the cert, I'd be open to attack).