CRL file must not be empty #3
Loading…
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
CRL file can not be initialized by touch and must contain a valid CRL content.
The CRL file must be created when the PKI is initialized, with :
openssl ca -gencrl -keyfile /etc/shellpki/cakey.key -cert /etc/shellpki/cacert.pem -out /etc/shellpki/crl.pem -config /etc/shellpki/openssl.cnf
If we are using "crl-verify" and the CRL file is empty, then OpenVPN will start but no client connection will work.
This issue was resolved with commits
97f1affa1b
and6165ccec6c