Continuing this from Freeland.
I configured everything server-wise on the EdgeRouter and tested it with the OpenVPN app on my PC, so I know the tunnel works. Because I need iOS setup to work just by emailing the .ovpn file (needs to be super user friendly) I found some instructions online that show you how to embed the cert text into that config file. The profile imports on my phone but doesn’t connect and I get the error message below.
So apparently I need to convert my key to #PKSC12 format with this command to work with iOS
openssl pkcs12 -export -in cert -inkey key -certfile ca -name MyClient -out client.ovpn12
My root cert is called cacert.pem, key is client1.key, and client cert is client1.pem. @Heimdallr you wrote this command out with .crt format certs. Should that matter? Also where will the .ovpn12 file be output? I’m assuming this command will be issued on my EdgeRouter?