2 OpenVPN servers - but all clients are shown on one export client list
-
I have two OpenVPN servers:
- TCP port 1194, ipv4
- UDP port 1195. ipv4
When I go to the client export tab, the dropdown for Remote Access Server correctly shows both. However, for 1194 there are no clients listed. All clients for both servers are showing under the list for 1195.
I reinstalled the client export package (it had been recently updated anyway, but maybe a bug?).
I also confirmed that the particular device that should show under 1194 export is associated with the 1194 server.
I do recall last year changing the 1194 to TCP instead of UDP. Maybe this broke the association. I will try changing the users and re-saving.
-
Taking one 1194 user under Client Specific Overrides and changing them to 1195 and then back to 1194 did not make any difference.
-
@gboone
Are you using different CAs on both servers and did you generate user certificates from both CAs? -
@viragomann Thanks this was very helpful. I looked again at the certs and found that the Peer Certificate Authority for the one in Question was actually a server cert instead. Changed it back to the Intermediate CA it should have been and the list is populating.