> On Sunday, January 7th, 2024 at 10:52 PM, Jochen Bern <jochen.b...@binect.de> > wrote:
> On 07.01.24 06:50, Peter Davis via Openvpn-users wrote: > > > As you can see, I have moved the files to /etc/openvpn/server directory. > > > Correction: You have copied SOME files to that directory, namely, those > that the server needs. > > > Now if I ignore the warning message above, what is the risk? > > > Then you'll lose the content of those files that only the CA needs, > and thus the ability to continue operating that (first) CA, in particular: > -- You'll be unable to create a CRL, whether it is to actually revoke a > cert or just to replace an expiring one. > -- When the (first) server cert expires, you'll be unable to have a new > one created by the same CA, thus requiring a config change on every > client - wherever and in whosever hands it is - before it'll be able > to connect to the VPN again. > > Kind regards, > -- > Jochen Bern > Systemingenieur > > Binect GmbH > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openvpn-users Hi, Thanks again. So: 1- What's the solution? 2- What do I need to do to build new servers using Easy-RSA? 3- What files do I need to copy from Easy-RSA so that I can safely delete the Easy-RSA directory? _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
