...
A: From the BDC web GUI, navigate to VPN → OpenVPN → Client exportFrom the QWS Server CLI, create a file called vpn-c.zip, and place it in /opt/cert/vpn. Include the following files:
- Download the certificate bundle as indicated in the image above
- Edit the OVPN file, and replace the LAN address with the public IP of the FQDN
- The line will read as “remote x.x.x.x 1194 udp4”, where x.x.x.x is the local LAN IP address specified earlier during installation
- This needs to be a numerical value (rather than an FQDN) to eliminate any DNS related issues for individual deployments
- Rename the downloaded OVPN file to “client.ovpn”
- Add to a zip file called “vpn-c.zip”
- Place this file under /opt/cert/vpn/ on the BDC server
- This file will inject all connectivity information and certificates into each QWS Endpoint when they register, sent via the public IP provided during initial image creation on the BicDroid DLP server
A future version will have a script that can be execute executed by the IT admin to create this bundle automaticalyautomatically, and place it in the proper directory for export.
...