I am having trouble setting up an SSL certificate for use with OpenVPN on a Mikrotik router. This is the first time I have attempted to use an SSL certificate with Mikrtok routerOS. Hoping a forum member can help me figure out what I am doing wrong.
On a router running ROS 6.16RC2, I generated a SSL CSR. This created two files. One was called certificate-request.pem and the other was called certificate-request_key.pem. I copied the two files from my router to the windows desktop. Using the contents of the certifcate-request.pem file, I filled out the CSR information requested by Network Solutions and ultimately downloaded from Network Soutions, a zip file containing three files - AddTrustExternalCARoot.crt, MT.DOMAINNAME.COM.crt, and NetworkSolutionsDVServerCA.crt. I copied the MT.DOMAINNAME.COM.crt from the certifcates menu in routerOS using the passphrase I had created. It imported as cert_5, but the logs showed an error soon after “Unable to get CRL issuer certifcate from store”. Based on the error I assumed I needed to import the root and intermediate certificate files that came in zip file into routerOS also. I imported AddTrustExternalCARoot.crt and NetworkSolutionsDVServerCA.crt into routerOS and soon after I received a message in the logs “CRL updated for Cert_5” I took this as a good sign. At this point I setup the OpenVPN configuration to use a PPP profile and the certificate called Cert_5, but my Chromebook was not able to establish an OpenVPN connection to the router using a valid OpenVPN account created on the router. I reviewed the SSL configuration on the routerOS and realized the Cert_5 had an LT designation beside it, not a KR designation. Reading on the forums seemed to indicate that I had forgotten to import the private key file for the certificate. I tried to import the certificate-request_key.pem that was created in the first step, but nothing seems to happen. The Cert_5 designation remains LT and I am unable to establish an OpenVPN connection to the router.
Can you suggest what I need to do to get this certificate installed completely and OpenVPN functioning on my router? Thanks in advance for any suggestions you have.