Auto revoke after 31 days

theonemule / simple-openvpn-server

A setup script and simple web UI for setting up an OpenVPN Server

MIT License

232 stars 115 forks source link

Auto revoke after 31 days #1

Closed simplecode678 closed 6 years ago

simplecode678 commented 6 years ago

Hi, Any idea please to make auto revoke client certificate after 31 days (or any date) ? So we are able to revoke with admin panel or auto revoke following settings. Thanks ! Nice openvpn admin ! Raz

theonemule commented 6 years ago

On line 42 of https://github.com/theonemule/simple-openvpn-server/blob/master/index.sh, you can pass in a --days parameter whenever EasyRSA is creating the client certificate. That would invalidate the certificate after however many days you want. Currently, it's set to 3650, so 10 years.

simplecode678 commented 6 years ago

So results is just ./easyrsa build-client-full $client nopass --days 31 or do i have to change anything else ? thanks !

theonemule commented 6 years ago

That should work. :)

simplecode678 commented 6 years ago

I have check client ovpn file Validity Not Before: Dec 11 15:42:44 2017 GMT Not After : Dec 9 15:42:44 2027 GMT So are still with 10 years :( Any other idea please ?

theonemule commented 6 years ago

I'll have to get back to you... Gotta work on other stuff right now.

simplecode678 commented 6 years ago

thanks ! I will have a look as well on my side :)

simplecode678 commented 6 years ago

Finaly done a fork from Agristan done here and it seems to work :) thanks !

theonemule commented 6 years ago

Very cool. That's what OSS is great for. :)