OpenVPN should be able to handle PKCS#12 packages just fine using the pkcs12 parameter. I do believe there is a problem on some platforms if you want to use both the pkcs12 and ca parameters (for example if the CA of the peer is different than that which issued your cert). In that case, one needs to extract the key and cert from the PKCS#12 package and use the key and cert parameters instead of pkcs12. We do this all the time as part of our ISCS setups - (http://iscs.sourceforge.net). Good luck - John
On Thu, 2010-05-27 at 07:22 -0700, Regivaldo Gomes Costa wrote: > > Dear Max, > > Sorry for the newbie quetions. > > Your tip solved the problem, but I had to convert from p12 to pem > (with DES protect). > > The openvpn not read keys with p12 format. > > Thank you. > > Regivaldo Costa > Doe Sangue. Doe Vida. > > > > > ______________________________________________________________________ > De: "massimiliano.p...@dartmouth.edu" > <massimiliano.p...@dartmouth.edu> > Para: openca-users@lists.sourceforge.net > Enviadas: Quarta-feira, 26 de Maio de 2010 13:16:44 > Assunto: Re: [Openca-Users] Certificates/key with password in Openca > > What do you mean by that ? The key is protected with the user > pin/passwd > when it is generated on the server and that is needed to download the > bundle as a .p12 file. > > It that what you were asking ? > > Cheers, > Max > > Quoting Regivaldo Gomes Costa <regivaldoco...@yahoo.com.br>: > > > Hi, > > > > I have some doubts as to generated certificates by OpenCA: > > > > In "Browser Certificate Request" option, when the key is generated > > by the server, it is possible that the key is generated with > password? > > > > You can generate users certificates for openvpn with password > (with > > the key generated by OpenCA)? > > > > Thank you. > > Regivaldo Costa > > Doe Sangue. Doe Vida. > > > > > > > > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Openca-Users mailing list > Openca-Users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openca-users > > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Openca-Users mailing list > Openca-Users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openca-users ------------------------------------------------------------------------------ _______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
