Ubuntu 20: OpenVPN Server Installation. pki-tool missing

Zaraza Zaraza asked:

I moved from ubuntu 16.04 to 20.04. I had a custom script that installs OpenVPN server automatically and now it fails.

Command that was running successfully on ubuntu 16.04: /etc/openvpn/easy-rsa/pkitool --server server

Now returns an error: -bash: /etc/openvpn/easy-rsa/pkitool: No such file or directory
Also another error: /etc/openvpn/easy-rsa/whichopensslcnf: not found

What I noticed that after installing easy-rsa on ubuntu 16.04 machine the /usr/share/easy-rsa directory contains much more files than 20.04.

16.04:

build-ca
build-inter
build-key-pass
build-key-server
build-req-pass
inherit-inter
openssl-0.9.6.cnf
openssl-1.0.0.cnf
revoke-full
vars
build-dh
build-key
build-key-pkcs12
build-req
clean-all
list-crl
openssl-0.9.8.cnf
pkitool
sign-req
whichopensslcn

While ubuntu 20.04 only has a few:

easyrsa
openssl-easyrsa.cnf
vars.example
x509-types

Why are those files missing and what is the equivalent command to generate server.crt and server.key?

PS.
of course I copy the /usr/share/easy-rsa directory to /etc/openvpn/

My answer:


The pkitool command (and indeed, the whole easy-rsa directory) was never located at the path you posted. Maybe you had a symlink to its actual location, in the directory /usr/share/easy-rsa, provided by the easy-rsa package, or had made a copy of that directory that was deleted.


View the full question and any other answers on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.