Skip to content
Get all certificates from a non encrypted xml pfSense config file to look for possible CRL issues due to duplicated cert serial numbers
PowerShell
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
LICENSE
README-es.md
README.md
pfSenseCertViewer.ps1
result-example.md Update result-example.md Aug 22, 2019

README.md

pfSense-Certificate-Viewer

Powershell script: pfSense Certificate Viewer

Sometimes it happens in pfSense that certificates are created with duplicated SerialNumbers (in the same CAroot). If any of these certificates are revoked, and it's in use by openVPN, we will be surprised of having more revoked certs than the desired. This tool finds those duplicated SerialNumbers into a non encrypted xml pfSense config backup.

Last change 2019/07/21: New feature: Now it also shows the CRL(s) in which the cert appears.

Thanks to pippin for show me the links to the pfSense docummented issue:

https://redmine.pfsense.org/issues/3694

https://forum.netgate.com/topic/69978/generated-certificates-with-non-unique-serial-numbers/2

You can’t perform that action at this time.