Question : How do i create additional client key pairs?

hi experts
how do i create additional key pairs with openVPN, i have 3 pairs client1, client2 and client3.
how do i continue the build process and build client4, client5 and so on...

thanks
kajal

Answer : How do i create additional client key pairs?

Creating Additional VPN Clients

You will need a copy of three files, the certificate authority key and certificate (ca.key and ca.crt) and a .ovpn configuration file. These were created during the server-side setup of your VPN.

Open a command prompt and change directories to C:\Program Files\OpenVPN\easy-rsa. From the command prompt type the following command: init-config. It should look like this:

C:\Program Files\OpenVPN\easy-rsa>init-config

C:\Program Files\OpenVPN\easy-rsa>copy vars.bat.sample vars.bat
1 file(s) copied.

C:\Program Files\OpenVPN\easy-rsa>copy openssl.cnf.sample openssl.cnf
1 file(s) copied.

Then edit the newly created vars.bat at the bottom so that it matches your server's information.

set KEY_COUNTRY=(2 character country code)
set KEY_PROVINCE=(2 character state or province code)
set KEY_CITY=(your city or locality)
set KEY_ORG=(your company or organization name)
set KEY_EMAIL=(your organization's email address)

If you're not sure what to set these values to, open the ca.crt file, click the details tab, and then click on issuer. C=Country, S=State/Province, L=City, O=Org, and E=Email. Note: you only need to do the above for the first client you add. After that there is no need to run init-config or edit vars.bat.

Now return to the command prompt and type the following commands:

C:\Program Files\OpenVPN\easy-rsa>vars

C:\Program Files\OpenVPN\easy-rsa>clean-all
1 file(s) copied.
1 file(s) copied.

This will create a directory called C:\Program Files\OpenVPN\easy-rsa\keys. Copy the ca.crt and ca.key files into this directory.

Return to the command line and issue the following commands:

C:\Program Files\OpenVPN\easy-rsa>vars

C:\Program Files\OpenVPN\easy-rsa>build-key.bat client1 (where client1 is a unique client name for your VPN)

Generating a 1024 bit RSA private key
..++++++
.............................................++++++
writing new private key to 'keys\client1.key'
-----

You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.

Random Solutions

Cisco Router DHCP Lease times - force client renewal

net send on win98

Problems with numeric keys on Suse 10.3 and RealVNC

Force static IP

How do I identify the source of continuous errors on a network?

Need to Interview IT Professional Regarding Disaster Recovery Planning

Remove/Delete (MSHOME) Workgoup(s) and prevent it/them from returning

Wierd Windows 2000 DHCP Server issues

Serv-U: Inside IP address all works fine, outside no write/delete access 550 Requested action not taken

Microsoft Small Business Server 2003 R2 will not send attatchments larger than 2mb.