easy-rsa
easy-rsa copied to clipboard
OpenVPN
easy-rsa - Simple shell based CA utility
Add support for PKCS11 tokens, based on initial proposal #332 in response to #268. In comparison to previous implementation, this one makes use of [RFC 7512](https://tools.ietf.org/html/rfc7512) scheme to address tokens...
Please see: https://github.com/TinCanTech/easy-tls **Easy-TLS** An Easy-RSA extension utility to help manage Easy-RSA based x509 security credentials **combined with** OpenVPN specific TLS keys. Testing and feedback welcome.
Provide a command-line argument to set the root (top level) directory of the easy-rsa tree. This is normally set to `pwd` unless variable `EASYRSA` is set, either through the environment...
I've examined the code and now I can see that proper key usage is set only on the `sign-req` step. I have external CA and need proper request file with...
Current: ``` $ more easyrsa3/x509-types/server # X509 extensions for a server basicConstraints = CA:FALSE subjectKeyIdentifier = hash authorityKeyIdentifier = keyid,issuer:always extendedKeyUsage = serverAuth keyUsage = digitalSignature,keyEncipherment ``` The authorityKeyIdentifier should...
It would be nice if the tool could embed the config and the certificates as a single file so that it would be easier to distribute the config to clients....
We want to include the latest easy-rsa 3 release in the soon coming OpenVPN 2.5 release, where it is bundled in the Windows installer. From a quick glance, it seems...
Would it be ok to write a patch for a feature to export required files for client (ca.crt, client-key.crt, client-key.key) to zip file? I'm planning to add something like `./easyrsa...
I have a couple of Nitrokey HSMs, and I can see in different places that Easy-RSA does not support PKCS#11 smartcards. In other places it says "planned for a future...
hello there, I created a quick and dirty readthedocs site for this based on your doc directory. See https://easy-rsa.readthedocs.io Just a proof of concept at this stage but not hard...
