Mirrors/pfSense-Certificate-Viewer
1
0
Fork 0
mirror of https://github.com/alvarsedano/pfSense-Certificate-Viewer.git synced 2025-06-28 01:07:00 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
54 Commits 2 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Alvaro Sedano 83edf404ea
Update README.md
2019-09-11 02:40:03 +02:00
LICENSE
Initial commit
2019-07-20 17:57:49 +02:00
pfSenseCertViewer.ps1
Update pfSenseCertViewer.ps1
2019-09-11 02:38:41 +02:00
README-es.md
Update README-es.md
2019-09-11 02:35:57 +02:00
README.md
Update README.md
2019-09-11 02:40:03 +02:00
result-example.md
Update result-example.md
2019-08-22 21:07:57 +02:00

README.md

pfSense-Certificate-Viewer

Powershell script: pfSense Certificate Viewer

Sometimes it happens in pfSense that certificates are created with duplicated SerialNumbers (in the same CAroot). If any of these certificates are revoked, and it's in use by openVPN, we will be surprised of having more revoked certs than the desired. This tool finds those duplicated SerialNumbers into a non encrypted xml pfSense config backup.

2019/07/21: New feature: Now it also shows the CRL(s) in which the cert appears.

Last change 2019/09/11: New feature: Encrypted XML config files supported. To decrypt the xml files is mandatory a path to openssl.exe. By default this script looks for the openvpn bin folder.

Thanks to pippin for show me the links to the pfSense docummented issue:

https://redmine.pfsense.org/issues/3694

https://forum.netgate.com/topic/69978/generated-certificates-with-non-unique-serial-numbers/2

Description
Get all certificates from a pfSense/OPNsense config file backup to look for possible CRL issues due to duplicated cert serial numbers. Support for encrypted XML files from (pfSense v2.4.4-Release-p3 and earlier), (OPNsense 19.7.4).
certificatesduplicated-serialnumbersduplicatesopnsensepfsensepfsense-certificate-viewerviewer
Readme GPL-3.0 122 KiB
Languages
PowerShell 100%