We provide SSL/TLS certificates for local infrastructure, to ensure protection for all your assets.
# apt install openvpn
tls-server
verify-client-cert require #Require all clients to have a certificate
remote-cert-tls client
ca ca_file.pem #File containing the SSL VPN Root certificate, accessible in files
cert yourcert.pem #Your certificate created
key yourkey.pem #Your private key of the certificate
Your private key must be kept secret and must not be shared, even with us. On your server, it should only be accessible to root.
You can also check OCSP status using the script available in FAQ. Without it, your server cannot check if you revoke the certificate online!
You can create certificates for up to a year depending on your plan.
SSLEngine on
SSLCertificateFile path/to/fullcert
SSLCertificateKeyFile path/to/key
Then restart Apache and try to connect using https://. If you get an error saying "The root certificate is not known", it is working but you need to
import TLS VPN certificates on your browser in Settings->Certificates->Import.
This website uses cookies or similar technologies, to provide its service, enhance your browsing experience and provide personalized recommendations. By continuing to use our website, you agree to our Privacy Policy.