Am 27.10.2015 um 16:40 schrieb Tom SP2L:
The ONLY CA certificate you need is:
amprnet-vpn-ca.cert
Sorry Tom, now I am completly lost!
My lotw cert is _not_ signed by this CA. This is the CA from AMPRnet and not the lotw one.
I would be glad if you could explain to me why you thin I need this and how I should put this to work. The closest I can think of is the --extra-certs parameter from openvpn cite:
--extra-certs file Specify a file containing one or more PEM certs (concatenated together) that complete the local certificate chain.
This option is useful for "split" CAs, where the CA for server certs is different than the CA for client certs. Putting certs in this file allows them to be used to complete the local cer‐ tificate chain without trusting them to verify the peer-submit‐ ted certificate, as would be the case if the certs were placed in the ca file.
BUT: I have no idea how I could plug this into my gui :-(
Also the recipie on the wiki dows not mention it. So it must work somehow without, just how?
Roland