[Openswan Users] Some information please

Paul Wouters paul at xelerance.com
Thu Dec 22 00:20:59 CET 2005

On Wed, 21 Dec 2005, Terry Mason wrote:

> My instructions tell me not to auto install, but instead to go to the personal
> folder (in my certificates mmc) and import directly to my personal folder.
> When I do this, I get two certs in that folder - one with my company name on
> it, and another with my name (this looks different from the existing vpn
> laptops, which only have one cert - with the user's name on it).

use certimport.exe from ftp.xelerance.com:/openswan/windows/certimport/

> Another question - when creating a vpn connection, and dialing from the
> windows client, am I supposed to enter my NT domain username / password into
> the vpn box, or some other information (like the cert password)?

If using plain X.509 IPsec without l2tpd, then you not need to enter anything,
but you need to be using an ipsec client to configure the Microsoft IPsec
stack. If it is an old install, they probably used "ipsec.exe", and you can
try lsipsectool from sourceforge.net instead.
If they used IPsec with L2TP, then you probably want to check /etc/ppp/chap-secrets


More information about the Users mailing list