Multiple Certs and Keys

Yick Xie yick.xie at
Wed May 4 01:19:33 PDT 2016


Does ocserv support multiple certs and keys on one server? For one IP,
I got a self-signed IP cert and a commercial domain SSL cert. The
ocserv is configured to read 2 server-cert and server-key, while it
seems that only the first one in the order can work properly. The
self-signed IP cert is needed as a fail-over in case of potential
problems regarding to domain resolution or cert
expiration/revocation/blockade (like Let's Encrypt).


More information about the openconnect-devel mailing list