4 rm -f /tmp
/vpn-mk-client-cert.log
5 exec 2>/tmp
/vpn-mk-client-cert.log
10 echo common_name
=$common_name >&2
12 server_dir
=/etc
/openvpn
13 if [[ -e /etc
/openvpn
/server
]]; then
14 server_dir
=/etc
/openvpn
/server
17 cafile
=$server_dir/ca.crt
20 keyfiles
=(/etc
/openvpn
/easy-rsa
/pki
/{issued
/$common_name.crt
,private
/$common_name.key
})
21 if [[ -e /etc
/openvpn
/easy-rsa
/build-ca
]]; then
23 keyfiles
=(/etc
/openvpn
/easy-rsa
/keys
/$name.
{crt
,key
})
26 if [[ ! -e $cafile ]]; then
27 echo: error no cafile found
at $cafile >/tmp
/errors
32 for x
in ${keyfiles[@]}; do
33 if [[ ! -e $x ]]; then
41 cd /etc
/openvpn
/easy-rsa
43 .
/easyrsa build-client-full
$common_name nopass
>/dev
/null
45 source vars
>/dev
/null
47 { echo -e '\n\n\n\n\n'$common_name'\n\n\n\n\n'; sleep 2; echo -e 'y\ny\n'; } | .
/build-key
$name >/dev
/null
52 cp $cafile $d/$name-ca.crt
55 cp $server_dir/ta.key
$d/$name-ta.key