change client config to use tls-crypt instead of tls-auth

2020-02-21 21:15:32 -08:00 · 2020-02-21 21:15:32 -08:00 · b6de5e4a40
parent 692d5cf54b
commit b6de5e4a40
1 changed files with 5 additions and 4 deletions
--- a/bin/ovpn_getclient
+++ b/bin/ovpn_getclient
@ -58,17 +58,18 @@ $(openssl x509 -in $EASYRSA_PKI/issued/${cn}.crt)
 <ca>
 $(cat $EASYRSA_PKI/ca.crt)
 </ca>
-key-direction 1
-<tls-auth>
+#key-direction 1
+<tls-crypt>
 $(cat $EASYRSA_PKI/ta.key)
-</tls-auth>
+</tls-crypt>
 "
    elif [ "$mode" == "separated" ]; then
        echo "
 key ${cn}.key
 ca ca.crt
 cert ${cn}.crt
-tls-auth ta.key 1
+tls-crypt ta.key
+#tls-auth ta.key 1
 "
    fi