User Certificate Details



  • I create user certificates for OpenVPN and can't find information about how to correctly fill out the details.

    The documentation only says "..and filling out the form".
    https://doc.pfsense.org/index.php/Certificate_Management

    What's the meaning of the field "e-mail address"? Is it the address of the CA-Admin or of the Cert holder (user)?
    How to correctly choose "Common Name"? Should it just state identifying information about the user or should it mention the service maybe?

    I know it doesn't matter for the functionality but I'd still like to do it correctly.

    all the best,
    hex


  • Netgate

    Common Name is important:

    ![Screen Shot 2016-07-14 at 3.03.14 AM.png](/public/imported_attachments/1/Screen Shot 2016-07-14 at 3.03.14 AM.png)
    ![Screen Shot 2016-07-14 at 3.03.14 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-07-14 at 3.03.14 AM.png_thumb)


  • Rebel Alliance Global Moderator

    The others could be whatever you want on them..  Be it based on the specific user your creating the cert for, or you site and location.  Email for example could be the users, the admin..  etc..