How to generate private key and certificate for OpenVPN client

Doing this requires membership in sysadmin-main FAS group.

All the following commands should be ran on one of batcave hosts.

Clone ansible-private repo:

git clone /srv/git/ansible-private

Change into files/vpn subdirectory in cloned repo:

cd ansible-private/files/vpn

Run script to generate keys and cert, eg.:


Add generated files to git index, commit, push:

git status
git add .
git commit -a -m "Add VPN key/cert for"
git show
git push