From a9e9c4acfa90fc15a8a4b6b5ea6e1c2814ce940e Mon Sep 17 00:00:00 2001 From: sarthurdev <965089+sarthurdev@users.noreply.github.com> Date: Wed, 21 Jul 2021 14:36:48 +0200 Subject: pki: openvpn: T3642: Migrate OpenVPN to PKI and refactor --- interface-definitions/interfaces-openvpn.xml.in | 73 ++++++++----------------- 1 file changed, 22 insertions(+), 51 deletions(-) (limited to 'interface-definitions/interfaces-openvpn.xml.in') diff --git a/interface-definitions/interfaces-openvpn.xml.in b/interface-definitions/interfaces-openvpn.xml.in index 681290570..7ff08ac86 100644 --- a/interface-definitions/interfaces-openvpn.xml.in +++ b/interface-definitions/interfaces-openvpn.xml.in @@ -637,16 +637,12 @@ - + - File containing the secret key shared with remote end of tunnel - - filename - File in /config/auth directory - - - - + Secret key shared with remote end of tunnel + + pki openvpn shared-secret + @@ -654,55 +650,30 @@ Transport Layer Security (TLS) options - - - File containing tls static key for tls-auth - - filename - File in /config/auth directory - - - - - - - #include - #include - + - File containing certificate revocation list (CRL) for this host - - filename - File in /config/auth directory - - - - + TLS shared secret key for tls-auth + + pki openvpn shared-secret + - + #include + #include + - File containing Diffie Hellman parameters (server only) - - filename - File in /config/auth directory - - - - + Diffie Hellman parameters (server only) + + pki dh + - #include - + - File containing encryption key to authenticate control channel - - filename - File in /config/auth directory - - - - + Static key to use to authenticate control channel + + pki openvpn shared-secret + -- cgit v1.2.3