Thrid party pki
-
I am using a trusted third party pki and can get all the info filled in for the OPENVPN server except a DH key…
can i just generate a DH key on any computer and put that into the box? or do I have to have the third party ca to generate this DH key?
I am assuming the DH key is just like a shared key (i am sure it is technically more complicated) by being able to just generate it and copy it in...
is this an acceptable / workable solution?