Hi,
I’ve got an SB750G with routeros 5.13. I had openvpn working at one point, but I goofed somewhere and screwed up the configuration. So, I decided to simply redo it all. I removed all configuration options everywhere that referred to the old ovpn stuff, removed all the certificates (since I didn’t have the stuff to create more/new client certificates anymore), created new ones, etc. Then I set up the new config.
I set up my macbook (which uses viscosity for the openvpn stuff) again too, using the new certificates and keys. Now.. The odd thing! The connection keeps getting rejected with the following error: "VERIFY ERROR: depth=0, error=unable to get local issuer certificate: ", followed by the information that was in the OLD set of certificates. I’ve made triple sure I removed all the old stuff from the macbook since that was easiest to double/triple check for me, so I am 95% sure that the problem lies on the routeros side..
So, to specify what I did to redo the certificate things on the routeros side:
/certificate
print
remove 1
remove 0
import file-name=<ca.crt-filename>
import file-name=<server.crt-filename>
import file-name=<server.pem-filename>
decrypt
None of the commands give any errors or unexpected values. Now if I check with /certificate print I see two certificates which have nothing referring to the old certificate. So… Where the hell do I get the references to the old certificates from?! 