mirror of
https://github.com/alvarsedano/pfSense-Certificate-Viewer.git
synced 2025-07-08 06:06:57 +00:00
25 lines
1.2 KiB
Markdown
25 lines
1.2 KiB
Markdown
## pfSense/OPNsense Certificate Viewer
|
|
Powershell script v1.0.6: pfSense/OPNsense Certificate Viewer
|
|
|
|
Sometimes it happens in pfSense that certificates are created with
|
|
duplicated SerialNumbers (in the same CAroot). If any of these certificates
|
|
are revoked, and it's in use by openVPN, we will be surprised of having more
|
|
revoked certs than the desired. This tool finds those duplicated SerialNumbers
|
|
into a non encrypted xml pfSense config backup.
|
|
|
|
CA roots, server certificates and user certificates will also be displayed.
|
|
|
|
2019/07/21: New feature: Now it also shows the CRL(s) in which the cert appears.
|
|
|
|
2019/09/11: New feature: Encrypted XML config files supported. To decrypt the xml files is mandatory a path to openssl.exe. By default this script looks for the openvpn bin folder.
|
|
|
|
2019/09/13 New feature: Also supports OPNsense backups (both encrypted and unencrypted).
|
|
|
|
Last change 2019/09/13: The OPNSense decrypt header is used to call openssl.
|
|
|
|
Thanks to [pippin](https://forum.netgate.com/user/pippin) for show me the links to the pfSense docummented issue:
|
|
|
|
https://redmine.pfsense.org/issues/3694
|
|
|
|
https://forum.netgate.com/topic/69978/generated-certificates-with-non-unique-serial-numbers/2
|