Hi,
I have the same problem on SME 9.2
No you don't.
You are jumping to too many conclusions and not reading your logs.
tailf /var/log/openvpn-bridge/current
@400000005e70ab3c0a8b5d1c WARNING: file 'priv/key.pem' is group or others accessible
That's your first issue. I'd try fixing that.
It should look like this - 0600 root:root
-rw------- 1 root root 1679 Sep 30 2019 key.pem
You then might want to look at this
Cannot load DH parameters from pub/dh.pem
It should look like this - 0600 root:root
-rw------- 1 root root 245 Sep 30 2019 dh.pem
Can you explain how create a new cert and be sure not to password protect its key ?
I have never set password except for https://wiki.contribs.org/PHPki#Configure_your_new_PKI (can't do without)
That ONLY applies to the ROOT CA when you create it. You ALWAYS set a password on that.
When you create the client/server certificates you can create them without passwords, but that currently is NOT your issue.
Fix the bits above first.
[Edited wrong permissions]