Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    how to get .pem files for ubuntu vpn setup

    Scheduled Pinned Locked Moved OpenVPN
    7 Posts 3 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      matteovinci83
      last edited by

      i seem unable to get or find the .pem files for ubuntu vpn setup from the pfsense unit for clients to setup their vpn connections

      i get the ovpn file, key, and personal file

      but that doesnt work as openvpn in ubuntu just says its invalid or has no data

      not sure what im doing wrong or what im not looking at properly

      some assistance would be appreciated

      V 1 Reply Last reply Reply Quote 0
      • V
        viragomann @matteovinci83
        last edited by

        @matteovinci83
        You can download the bundle from the client export utility, so you get the certs and the config in separated files.

        If you need the certs combined in a single file just open them in a text editor and copy an paste one into the other.

        bingo600B 1 Reply Last reply Reply Quote 0
        • bingo600B
          bingo600 @viragomann
          last edited by bingo600

          @viragomann @matteovinci83

          I'm using (via pfSense Client export) on Linux Mint (Ubuntu) :
          The Inline Configuration "Most Clients"

          That delivers a single openVPN config file.
          With everything embedded in one file, Config , TLS Key and Certs.

          43756003-4fc8-4371-a812-b1ca96a4ec04-image.png

          Very elegant ...

          Now just do this in shell/cli : openvpn <pfSense-client-file>

          I haven't tried to integrate it into the GUI networkmanager , i actually prefer shell.

          Edit: The Bundled Archive , gives you a :
          Config file + Cert-P12 file + TLS-key file

          /Bingo

          If you find my answer useful - Please give the post a šŸ‘ - "thumbs up"

          pfSense+ 23.05.1 (ZFS)

          QOTOM-Q355G4 Quad Lan.
          CPUĀ  : Core i5 5250U, Ram : 8GB Kingston DDR3LV 1600
          LANĀ  : 4 x Intel 211, DiskĀ  : 240G SAMSUNG MZ7L3240HCHQ SSD

          V 1 Reply Last reply Reply Quote 1
          • V
            viragomann @bingo600
            last edited by

            @bingo600 said in how to get .pem files for ubuntu vpn setup:

            Edit: The Bundled Archive , gives you a :
            Config file + Cert-P12 file + TLS-key file

            You're right. It's the Viscosity bundle, which gives you the cert, CA, key in separate files each.

            Network manager likes the p12 file with passphrase.

            bingo600B 1 Reply Last reply Reply Quote 0
            • M
              matteovinci83
              last edited by

              thanks for the help all, inline configuration did the trick, pity it isnt obvious to begin with

              1 Reply Last reply Reply Quote 0
              • bingo600B
                bingo600 @viragomann
                last edited by

                @viragomann said in how to get .pem files for ubuntu vpn setup:

                Network manager likes the p12 file with passphrase.

                I'm actually having an issue with a "Thin Client" , that complains about the .p12 file not having a passphrase. I have exported the "Bundle Archive".
                I have scheduled time to look at it monday.

                I'm using the "Create User" & "tick" the : "Create user cert"
                c6afb725-4953-41f5-89cc-b8e5356f1a09-image.png

                Do you have a "quick tip" on how to set a passphrase ?

                Ahhh ...
                Is it this one on the "Client Export Page"
                35dc2098-a5d9-4d1e-a0dd-6604594488ad-image.png

                /Bingo

                If you find my answer useful - Please give the post a šŸ‘ - "thumbs up"

                pfSense+ 23.05.1 (ZFS)

                QOTOM-Q355G4 Quad Lan.
                CPUĀ  : Core i5 5250U, Ram : 8GB Kingston DDR3LV 1600
                LANĀ  : 4 x Intel 211, DiskĀ  : 240G SAMSUNG MZ7L3240HCHQ SSD

                V 1 Reply Last reply Reply Quote 0
                • V
                  viragomann @bingo600
                  last edited by

                  @bingo600
                  Yeah, exactly.
                  You get an encrypted p12 file, when you download the Viscosity bundle and state the path to it at CA, user cert and private key in NM.

                  1 Reply Last reply Reply Quote 1
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.