Skip to content

Instantly share code, notes, and snippets.

@ssinyagin

ssinyagin/mk_client.sh

Created December 28, 2016 09:49
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save ssinyagin/b196da5234c57de71bcfb44041274a15 to your computer and use it in GitHub Desktop.
Save ssinyagin/b196da5234c57de71bcfb44041274a15 to your computer and use it in GitHub Desktop.
Download ZIP
Create OpenVPN client config with embedded certificates
Raw
mk_client.sh
#!/bin/sh
# FILE: /etc/openvpn/client_configs/mk_client.sh
CLIENT=$1
if [ "$CLIENT" = "" ]; then
echo "missing client name" 1>&2
exit
fi
CL_CRT=/etc/openvpn/easy-rsa/keys/${CLIENT}.crt
CL_KEY=/etc/openvpn/easy-rsa/keys/${CLIENT}.key
if [ ! -f $CL_CRT ]; then
echo "no such file: $CL_CRT" 1>&2
exit
fi
if [ ! -f $CL_KEY ]; then
echo "no such file: $CL_KEY" 1>&2
exit
fi
CONF=${CLIENT}.conf
cat base_conf > $CONF
echo "<ca>" >> $CONF
cat /etc/openvpn/easy-rsa/keys/ca.crt | \
grep -A 100 "BEGIN CERTIFICATE" | \
grep -B 100 "END CERTIFICATE" >> $CONF
echo "</ca>" >> $CONF
echo "<cert>" >> $CONF
cat $CL_CRT | \
grep -A 100 "BEGIN CERTIFICATE" | \
grep -B 100 "END CERTIFICATE" >> $CONF
echo "</cert>" >> $CONF
echo "<key>" >> $CONF
cat $CL_KEY | \
grep -A 100 "BEGIN PRIVATE KEY" | \
grep -B 100 "END PRIVATE KEY" >> $CONF
echo "</key>" >> $CONF
@Arindrew
Copy link

Arindrew commented Nov 9, 2017

cat: base_conf: No such file or directory

@maykel535
Copy link

base_conf="/etc/openvpn/server.conf"

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment