Description


Milesight VPN supports seamless connect with Milesight router. You can refer to Milesight VPN user guide for installation. The default valid time for Milesight VPN certification is 365 days. If you confirm the certificates of Milesight VPN is outdated, or you want to extend the invalid date of Milesight VPN, you can refer to this article for regenerate the new one.



Requirement


Milesight VPN 2.0.1



Configuration 


Step 1: Change the default valid time of certificates:


vi /milesight_vpn/urvpn/openssl/openssl.conf 


And change default_days to value you want.


Step 2: Delete all file under /milesight_vpn/urvpn/controllers_ca, /milesight_vpn/urvpn/router_ca, /milesight_vpn/urvpn/server_ca, /milesight_vpn/urvpn/root_ca,


you can use command:


sudo rm -f /milesight_vpn/urvpn/root_ca/* /milesight_vpn/urvpn/routers_ca/* /milesight_vpn/urvpn/server_ca/* /milesight_vpn/urvpn/controllers_ca/*


Step 3: Generate the root.key and root.crt by command:


sudo openssl req -new -x509 -nodes -out /milesight_vpn/urvpn/root_ca/root.crt -keyout /milesight_vpn/urvpn/root_ca/root.key -subj "/C=CN/ST=FJ/L=XM/O=Milesight/OU=Cloud Server/CN=MILESIGHT/emailAddress=admin@milesight.com" -days 3650 -config /milesight_vpn/urvpn/openssl/openssl.conf


Note: 3650 is valid date for the certificate, you can change to whatever you like.


Step 4: Restart Milesight VPN by command:


/etc/init.d/milesight_vpn.sh stop


/etc/init.d/milesight_vpn.sh start


 


Check Certificates Valid Date


You can check expire date of your root certificate by command:


sudo openssl x509 -noout -text -in /milesight_vpn/urvpn/root_ca/root.crt

 


 


 


--End--