OpenVPN Client Keys

[ericl42]

I have OpenVPN set up and working fine, however I want to add a new client key to it. Going off of the documentation, I issued the following commands with the following output on a CentOS box.

> cd /etc/openvpn/easy-rsa
> source ./vars (have also tried . ./vars)
NOTE: If you run ./clean-all, I will be doing a rm -rf on /etc/openvpn/easy-rsa/keys
>./pkitool client-new
Please edit the vars script to reflect your configuration, then source it with "source ./vars". Next, to start with a fresh PKI configuration and to delete any previous certificates and keys, run "./clean-all". Finally, you can run this tool (pkitool) to build certificates/keys.

It also says the same thing if I try the command ./build-key client-new. Any idea on why I can't do that? I need to keep all of my other keys, I just need one more. Thanks for the help.

[ericl42]

I changed some directory information in the vars file and that ended up fixing the problem. It was using pwd as the directory for EASY_RSA and if you were in the wrong directory it had some weird issues. Also I had the ca.key encrypted for security purposes and it was also having problems reading it.