2.0-RC1 Upgrade to 2.0.1 Release, OpenVPN issues?



  • Hi, simple question. We have users using OpenVPN remote access using certificates (built in cert manager and CA), will upgrading cause any problems? Will certificates have to be regenerated/reissued?


  • Netgate Administrator

    All certificates are generally brought forward across a firmware update.
    However 2.0.1 is a special case because of a security issue with previous versions. See the release note:
    http://blog.pfsense.org/?p=633
    This applies to you.

    Steve



  • @Aziz:

    Hi, simple question. We have users using OpenVPN remote access using certificates (built in cert manager and CA), will upgrading cause any problems? Will certificates have to be regenerated/reissued?

    They will be brought forward and function the same as before, everything from that regard will be completely identical. And it'll default to protecting you from untrusted users generating chained certificates, see the information on that in the release notes. If you're paranoid, you will want to regenerate all your certificates for security reasons, only after upgrading so they're correctly generated.



  • Thanks both.


Locked