While troubleshooting a SSL VPN connection I tried different certificates, which I successfully added as "trusted" in the Certifcates section of the WebUI.
When I download the ovpn-config file from the VPN portal I found that every time I try a new certificate in the `SSL VPN global settings` this is added to the ovpn-config file's `<ca>` section instead of replacing a previous one.
Normally I have `<ca>`, `<cert>` and `<key>` sections each containing one cert respective key entry in the config file. After changing certificates I get more and more entries in the `<ca>` section. In my opinion these should always be just one cert, the one I selected in the WebUI for the `SSL VPN global settings`.
Is there any way to get rid of these additional certificates other than recreating the specific VPN settigns entry?
Hi Gerd,
Thank you for reaching out to Sophos Community.
For the multiple CA entries, this is being investigated by the Devs and is harmless. I would recommend also creating a case so that this can be log
Also, kindly see the following reply from our Dev with a similar case.
Erick Jan
Community Support Engineer | Sophos Technical Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Quote