|
|
On Fri, 2005-02-04 at 17:59, Charles Duffy wrote: > On Fri, 04 Feb 2005 15:39:05 -0500, Francois Meehan wrote: > > > Thanks all for the replies. I do have a crl so I have this covered but > > this rise another question, if I want to give access back again to that > > individual, or if I there are user for which I want to regulate/control > > their vpn acces, their is no other mean that to revoke-grant certificates? > > If you revoke a certificate, you need to regenerate to give access back. > There are certainly other, more temporary ways of removing a user's > access, however. ---snip if you have revoked say "openssl revoke usercert.pem" and then do indeed want to regrant access to this user, can you recreate the user using the same name? ./build-key-pass usercert ? other thing, i have pem files in my key out directory, as set up in the vars script in easy-rsa, but they are just numbers. 01.pem 02.pem so when i revoke someone, do i have to look through the pem files to find the correct user, or can i use the name of their .crt or .key file? if i do ./build-key-pass testuser, i get 0x.pem, testuser.crt testuser.key and testuser.csr will "openssl revoke testuser.crt" work? TIA, Aaron Martinez ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |