I already have OpenVPN Roadwarrior set up but now need to set up IPSec Roadwarrior as well. I’d like to use certificate authentication for clients but don’t wan’t to set up a separate PKI from the one already set up for OpenVPN. Is it possible to use certificates generated for OpenVPN for IPSec as well? If so, what is the best way to export the root and host certificates from OpenVPN to import into IPSec? Is it possible to just copy the certificate and key files from one system to the other?
I think it should (emphasis on “should”) be possible since both systems utilize X.509 certificates. I would try to transfer the CA certificate (ca.crt), server certificate (server.crt), server key (server.key), and the individual client certificates and keys to their appropriate locations. However, I’m unable to provide detailed instructions. Additionally, remember that a significant aspect of this process involves updating the configuration files to accommodate the newly transferred certificates.