Does the openvpn module require you to be signed up with openvpn at all?
Initially my company signed up with OpenVPN cloud and I found this https://openvpn.net/access-server-or-openvpn-cloud/ which lead me to believe that we would need to create openvpn user account to use the openvpn access server. It seems like the reference architecture doesn't require that at all though.
No the [openvpn-server](https://github.com/gruntwork-io/terraform-aws-openvpn/tree/master/modules/openvpn-server) module is a self-maintained OpenVPN server that uses `openssl` to manage certificate keypairs directly on the server, with a backup stored in S3. This allows the OpenVPN server to operate without any dependency on the cloud offering. The module also installs additional utilities that exposes an RPC interface via AWS SQS to grant or revoke access to the server. This is all managed through the [openvpn-admin utility](https://github.com/gruntwork-io/terraform-aws-openvpn/tree/master/modules/openvpn-admin).