How to generate OpenVPN client certificate?

How do I download a certificate from OpenVPN?

When I open a connection to my VPN server (using OpenVPN), I receive an error, saying that my certificate cannot be imported. Here is the log from the network-manager: sudo nmcli c tap1. Connection established with 192.168.100.3
No existing key for 192.3 New CA certificate added: /etc/NetworkManager/certs/ca-certificates.crt Error adding authority certificates:/etc/NetworkManager/certs/ca-certificates.crt Failed to add certificate. Authentication errors will not be handled correctly. To correct this, uninstall the OpenVPN package and install it again. WARNING: Certificate has expired, please check your renewal time. ERROR: Unable to download certificate for /etc/NetworkManager/certs/ca-certificates.crt My VPN certificate is valid, according to the certificate checker here: &expiration=1812240600&method=checkcertificate&keyid=mykey. I have tried deleting the certificates and the key file, as well as regenerating it, but to no avail. How do I export a certificate that this network manager can accept? (Also, the site certificate is only valid for 1 month, so I'm guessing I'll have to wait for it to expire before I can make this work.) I finally found the answer. After following the steps here, I copied the certificate and key to my /etc/openvpn directory. Then I restarted the openvpn service, which told me to copy the files back over to the folder containing my certs. That's when it worked.

How do I get a CA certificate for VPN?

If you are looking to connect to another network via VPN, the first step is to create a certificate that you can install on the server.

Once you have this certificate installed, you can either install the certificate in your clients' browsers, or you can configure the clients to accept the certificate automatically.

I would like to ask how to get CA certificate for the vpn . I am facing problem like some one had told "we do not do it".

I want to connect the client site, which is from an different hosting service provider, to our LAN for VPN to access internet. For that, I need the SSL certificate and also the CA certificate from us. Is there any method where we can request the same

Or is there any way where we can just generate the same certificates

We have a domain name (say domain.com) which is hosted on GoDaddy and uses the SSL certificate from GoDaddy. The clients for whom we need the SSL cert and the CA cert are using other hosters (for example, Namecheap). Is there any way that I can request the same SSL cert and CA cert to be signed from our hoster (GoDaddy), so that I don't have to request a new SSL cert and CA cert everytime we have a new client?

On the WebHosting Control Panel go to Manage Hosts & Domains. Click the domain's name. Then click the SSL/TLS Certificates. You will see a button saying Request SSL/TLS Certificate. Click it. You will now be taken to a form which will let you select the options for your certificate. You should only have a choice of a single domain or multiple domains - you can choose to only allow the selected sub-domains or all sub-domains on this domain. Select your options and click OK. You will then be able to install the certificate