Up to $100 off Dedicated Servers
Reading Time: 5 minutes

What is OpenVPN?

The OpenVPN software bundle is a set of open-source, virtual private network (VPN) applications used to create a direct, secure site-to-site connection that provides remote access between two locations. 

The OpenVPN Server consists of three main parts:

  • The OpenVPN-AS Server
  • The Admin Web Interface/Admin GUI
  • The Connection Client

The OpenVPN Server: 

The VPN server is the primary component of the OpenVPN-AS Server, which handles the main functionality on the backend. Settings in the admin interface include routing, tunneling, encryption, user management, authentication, and other features. The OpenVPN server includes a Web GUI, which helps to manage many of the underlying elements of the software.

The Main WebGUI Administrative Interface: 

The Main Web Interface allows for easy management of the OpenVPN server components. In the WebGUI, the admin can control routing options, permissions, network settings, user authentication, and other settings. By default, an administrator can access the GUIWeb Interface by browsing to https://serverip:943/admin 

The OpenVPN Connect Clients: 

The VPN Client Software is a part of the OpenVPN server, which allows users to connect to the VPN server directly in one of three ways. The VPN Client also provides the option to download a configuration file which can then be used with other OpenVPN clients. The three options are:

  • BrowserConnect Client - This is the browser-based connection tool for OpenVPN. The web address for users is https://serverip:943
  • OpenVPN Connect Client (Mac) - Simplistic single connection client
  • OpenVPN Connect Client (Linux/Windows) - This is the OpenVPN client (which is different from the main openvpn-as program). This software requires a configuration file to work correctly. To install on a Linux variant use one of the following commands:


yum install openvpn


apt-get install openvpn

How to Setup The OpenVPN-AS Package


[root@host ~]# yum -y install https://as-repository.openvpn.net/as-repo-centos7.rpm
[root@host ~]# yum -y install openvpn-as

After running this command, the VPN server should be installed and ready to accept further configurations.


root@host:~# apt update && apt -y install ca-certificates wget net-tools
root@host:~# wget -qO - https://as-repository.openvpn.net/as-repo-public.gpg | apt-key add -
root@host:~# echo "deb http://as-repository.openvpn.net/as/debian bionic main">/etc/apt/sources.list.d/openvpn-as-repo.list
root@host:~# apt update && apt -y install openvpn-as

After running this command, the VPN server should be installed and ready to accept further configurations.

Source Install

Other source install options are available from Alternative OpenVPN and the FAQ OpenVPN documentation can be found on their website.

Ubuntu or Debian Source Install

dpkg -i openvpnasdebpack.deb

CentOS, RHEL, or Fedora Source Install

rpm -i openvpnasrpmpack.rpm

Setup OpenVPN Admin User

After installing the OpenVPN-AS server, the Admin account needs to be set up via a terminal by running the following commands. Change the password:

[root@host ~]# passwd openvpn 
Changing password for user openvpn.
New password: 
Retype new password: 
passwd: all authentication tokens updated successfully.
[root@host ~]# 

After setting up the admin password, log in to the WebGUI with the 
Username: openvpn 
Password: (yourpassword)

openvpn admin login
openvpn admin login
In certain instances with CentOS, you might need to run the complete python ovpn-init script in your terminal: /usr/local/openvpn_as/bin/ovpn-init

Configuring the Admin Web Interface

Once the initial settings have been created, you will be able to access the WebGUI interface via a web browser using this address:
Admin: https://serverip:943/admin
After you log in, you will see a license screen.

accept openvpn license
accept openvpn license

Click Agree to accept the license and move into the main configuration interface.

To reconfigure the settings manually on CentOS using the CLI, use Vim to access the config file located here: /usr/local/openvpn_as/bin/ovpn-init

Add/Configure Users

To add users, we can use bash or the Admin GUI.

adduser tester
passwd tester
Changing password for user tester.
 New UNIX password: 
 Retype new UNIX password: 
 passwd: all authentication tokens updated successfully.

Configuration Profiles

Here is where you can view, create, delete, or modify a configuration file.


Import A Profile Into the OpenVPN Client

If you have a .ovpn profile, copy the profile and any files it references to the SD card folder on your device (copy all files to the same folder). Then go to Menu / Import / Import Profile from SD card.

If you have an account on an OpenVPN Access Server, you can import the profile directly from the Access Server by going to Menu / Import / Import Access Server Profile.

If you have an account on the Private Tunnel service, go to Menu / Import / Import Private Tunnel Profile.


User Authentication

OpenVPN also provides for the ability to use multiple forms of user authentication including:

  • Local
  • PAM
  • LDAP

We suggest using Google's 2FA (2-Factor Authentication) at a minimum.


Log Locations

  • /var/log/openvpn/openvpn-status.log
  • /var/log/openvpn/openvpn.log




OpenVPN only allows for two "concurrent" users without having to purchase a license upgrade.

You can have multiple users setup within OpenVPN however, only two concurrent users are allowed unless the server is licensed for more. To increase the number of connections,you will need to get a license from OpenVPN.net

A $15.00 License Fee, Per Connected Device, Per Year with a minimum purchase of 10 connected devices is required if you need more than two concurrent connections.

Act Quickly To Reserve Your Server Now!

Have you been looking for a secure method to connect to the network or the internet and not seeing any quality candidates that fit the bill? Why not create a VPN of your own using one of our secure Dedicated Servers!

Give us a call at 800.580.4985, or open a chat or ticket with us to speak with one of our knowledgeable Solutions or Hosting advisors today!

Avatar for David Singer

About the Author: David Singer

I am a g33k, Linux blogger, developer, student, and former Tech Writer for Liquidweb.com. My passion for all things tech drives my hunt for all the coolz. I often need a vacation after I get back from vacation....

Latest Articles

How to renew an SSL certificate (a paid SSL cert)

Read Article

How to use NextCloud — setup and features

Read Article

Use ChatGPT to diagnose and resolve server issues

Read Article

What is SDDC VMware?

Read Article

Best authentication practices for email senders

Read Article