TurnKey OpenVPN

Note to AWS Marketplace users, who have NOT enabled root:
some of these commands may require root privileges, so may need to be prefixed with sudo.

Create a client profile

openvpn-addclient client-name client-email [private-subnet]

Create auto-expiring obfuscated client profile download url

/var/www/openvpn/bin/addprofile client-name

Manually trigger deletion of expired profile download urls


Revoke client certificate

source /etc/openvpn/easy-rsa/vars
/etc/openvpn/easy-rsa/revoke-full client-name