Closed TinCanTech closed 12 months ago
EasyRSA vars
file is expected to be in the parent of the PKI.
Changing that in version 3.1.x has proven to be too intrusive.
Note:
EasyRSA has not made any changes to force vars
in the PKI,
it has only added a warning to encourage that use.
That warning will be disabled for v3.1.7+
.
Follow-up: #1027
If you see this warning about your
vars
file:Ignore this message, it will be removed in the next release.
Edit:
vars
file in your PKI directory. This is now recommended.~Please, do NOT put your
vars
file into your PKI.~The problem is due to setting
EASYRSA
orEASYRSA_PKI
in thevars
file.First, establish if your
vars
file is Global or Local:Global:
vars
file is NOT in the PKI.EASYRSA
andEASYRSA_PKI
MUST NOT be set in thevars
file. Otherwise, you have locked yourvars
file to a single PKI, which means it is not global.Local:
vars
file is in the PKI.EASYRSA
andEASYRSA_PKI
MUST NOT be set in thevars
file. These settings are not compatible with avars
file in the PKI.~## Do NOT move your
vars
file to your PKI.~Note: Setting
EASYRSA
andEASYRSA_PKI
in thevars
file is NOT recommended. However, if you do set these variables invars
then it is still supported.