You can also include the ca, cert and key content in the client file.Notice that the name of the client certificate and key files depends upon the Common Name of each client.Key "C:\\Program Files\\OpenVPN\\config\\mike-laptop.key" Notepad "C:\Program Files\OpenVPN\easy-rsa\keys\mike-laptop.ovpn"Ĭert "C:\\Program Files\\OpenVPN\\config\\mike-laptop.crt" Copy the sample server configuration file to the easy-rsa folder with client's Common Name as the file name (each client will have a different file name)Ĭopy "C:\Program Files\OpenVPN\sample-config\client.ovpn" "C:\Program Files\OpenVPN\easy-rsa\keys\mike-laptop.ovpn".This is similar to the server configuration Key "C:\\Program Files\\OpenVPN\\config\\server.key"ĭh "C:\\Program Files\\OpenVPN\\config\\dh2048.pem" Notepad "C:\Program Files\OpenVPN\easy-rsa\keys\server.ovpn"Ĭa "C:\\Program Files\\OpenVPN\\config\\ca.crt"Ĭert "C:\\Program Files\\OpenVPN\\config\\server.crt" Copy the sample server configuration file to the easy-rsa folderĬopy "C:\Program Files\OpenVPN\sample-config\server.ovpn" "C:\Program Files\OpenVPN\easy-rsa\keys\server.ovpn".Start Menu -> All Programs -> OpenVPN -> OpenVPN Sample Configuration Files The sample configuration files can be easily found using the start menu: "C:\Program Files\OpenVPN\bin\openvpn.exe" -genkey -secret "C:\Program Files\OpenVPN\easy-rsa\keys\ta.key" Generate a shared-secret key (Required when using tls-auth).Generate Diffie Hellman parameters (This is necessary to set up the encryption).Repeat this step for each client computer that will connect to the VPN.When prompted, enter the "Common Name" as the name you have chosen (e.g.For each client, choose a name to identify that computer, such as "mike-laptop" in this example.When prompted to sign the certificate, enter "y".When prompted, enter the "Common Name" as "server".Organizational Unit Name (eg, section) :Ĭommon Name (eg, your name or your server's hostname) :OpenVPN-CAĮmail Address The server certificate and key: For your "Common Name," a good choice is to pick a name to identify your company's Certificate Authority. These will have default values, which appear in brackets.
When prompted, enter your country, etc.The certificate authority (CA) certificate and key:.Edit the following lines in vars.bat, replacing "US", "CA," etc.Open the vars.bat file in a text editor:.NOTE: Only run init-config once, during installation.On the pop up User Account Control window, Click "Yes".
Download the installer from here and run it on the server computer.Further Considerations / TroubleshootingĦ.5 Security Tips Downloading and Installing OpenVPN.Copying the Server and Client Files to Their Appropriate Directories.For a more detailed understanding of setting up OpenVPN and its advanced features, see the HOWTO page. This page contains a no-frills guide to getting OpenVPN up and running on a Windows server and client(s).