Pfsense 2.0.1 - OpenVPN Utility - Remote Access (SSL/TLS + User Auth)- no certs

Nachtfalke · Feb 8, 2012, 8:27 PM

Hi,

I created several OpenVPN Servers, CAs and certs on pfsense 2.0.
I updated to pfsense 2.0.1 and now I want to create new CA, certs and OpenVPN server because of the certificate security issues in pfsense 2.0.

To make it short:
OpenVPN Server with Remote Access (SSL/TLS) shows all certs in Client Export utility.
OpenVPN Server with Remote Access (SSL/TLS + User Auth) does not shows any certs in Client Export utility.

If I switch the server type then I can see the certs again - so it must be a client export utility problem and not a CA mismatch.

Does anyone else has this problem ? I reinstalled the Export Utility right now but nothing changed.

Thanks in advance!

Nachtfalke · Feb 12, 2012, 5:26 PM

My mistake….when using "Local Database" I need to define a cert in user manager. When using RADIUS as backend this isn't neccessary. I missed that in any way :(

jimp · Feb 13, 2012, 7:58 PM

Yep.. that's the most common mistake there. Local users have to have their certs assigned to the user they're associated with. Otherwise it wouldn't know that they are valid users with certs for the VPN.