2019-07-22 02:35:28 +02:00
## pfSense-Certificate-Viewer
2019-07-21 14:26:31 +02:00
Powershell script: pfSense Certificate Viewer
Sometimes it happens in pfSense that certificates are created with
2019-08-13 18:47:32 +02:00
duplicated SerialNumbers (in the same CAroot). If any of these certificates
are revoked, and it's in use by openVPN, we will be surprised of having more
2019-07-22 01:54:50 +02:00
revoked certs than the desired. This tool finds those duplicated SerialNumbers
2019-07-22 00:34:44 +02:00
into a non encrypted xml pfSense config backup.
2019-07-21 14:26:31 +02:00
2019-09-11 11:30:01 +02:00
CA roots, server certificates and user certificates will also be displayed.
2019-09-11 02:33:35 +02:00
2019/07/21: New feature: Now it also shows the CRL(s) in which the cert appears.
2019-09-11 02:40:03 +02:00
2019-09-13 02:36:00 +02:00
2019/09/11: New feature: Encrypted XML config files supported. To decrypt the xml files is mandatory a path to openssl.exe. By default this script looks for the openvpn bin folder.
Last change 2019/09/13 New feature: Also supports OPNsense backups (both encrypted and unencrypted).
2019-07-22 00:33:09 +02:00
2019-07-22 02:02:03 +02:00
Thanks to [pippin ](https://forum.netgate.com/user/pippin ) for show me the links to the pfSense docummented issue:
2019-07-22 00:33:09 +02:00
https://redmine.pfsense.org/issues/3694
2019-07-22 00:33:28 +02:00
2019-07-22 00:33:09 +02:00
https://forum.netgate.com/topic/69978/generated-certificates-with-non-unique-serial-numbers/2
