Review your favorite Linux distribution.
Go Back > Forums > Linux Forums > Linux - Software
User Name
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.


  Search this Thread
Old 02-11-2009, 04:37 PM   #1
Red Squirrel
Senior Member
Registered: Dec 2003
Distribution: Mint 20.1 on workstation, Debian 11 on servers
Posts: 1,319

Rep: Reputation: 54
How do I create extra users for openvpn?

I'm trying to add a 2nd vpn user but it wants me to redo the entire CA, which would render the other user's non usable. Is there a way around this?

[root@extvpnsrv easy-rsa]# ./build-key-pass user2
Please edit the vars script to reflect your configuration,
then source it with "source ./vars".
Next, to start with a fresh PKI configuration and to delete any
previous certificates and keys, run "./clean-all".
Finally, you can run this tool (pkitool) to build certificates/keys.
This I did already when I first setup but now it wants to do it again? Why?
Old 02-14-2009, 12:32 AM   #2
LQ Newbie
Registered: Aug 2003
Location: Maryland
Distribution: Debian, Ubuntu, Solaris
Posts: 23

Rep: Reputation: 15
Did you create and sign the first client's cert and then come back later in a different terminal? If so, just re-reun source ./vars because your settings were lost.

If that doesn't fix it, IIRC I might have run into a similar problem the other day on linux where I sourced that ./vars file but it still complained. I was messing around with openvpn today on solaris and instead of doing a source ./vars I did a . ./vars which I can't remember if I did or not on the linux box to fix the problem. Worth a try tho I guess. Good luck.
Old 02-14-2009, 12:46 AM   #3
Red Squirrel
Senior Member
Registered: Dec 2003
Distribution: Mint 20.1 on workstation, Debian 11 on servers
Posts: 1,319

Original Poster
Rep: Reputation: 54
Won't that command reset the CA making all other certs invalid though? That's my problem, I don't want to invalidate the existing users.
Old 03-09-2009, 08:12 PM   #4
LQ Newbie
Registered: Nov 2006
Location: Montreal
Distribution: FC6
Posts: 28

Rep: Reputation: 15
anyone figure this out? i already have about 10 users with the CA and their own keys, i cant just redo them all
Old 03-10-2009, 09:24 PM   #5
LQ Newbie
Registered: Mar 2009
Posts: 11

Rep: Reputation: 0
you can try it like below, I added clients like this.

cd easy-rsa
. ./vars
./build-key user2


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenVpn remove users from database? Shwick Linux - Server 0 12-08-2008 10:56 PM
adding users to OpenVPN bambeklis Linux - Networking 0 04-10-2008 04:12 AM
C compiler cannot create executables when compiling OpenVPN rob_xx17 Linux - Software 8 09-15-2006 10:37 PM
Can I use OpenVPN to create a secure connection for Remote Desktop HGeneAnthony Linux - Software 4 04-29-2006 05:50 AM
Why do Linux IDEs create so many extra files? stodge Linux - Software 7 05-03-2003 12:38 PM > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 06:55 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration