[Openswan Users] Openswan - Windows native

Paul Wouters paul at xelerance.com
Sat Jun 11 01:38:51 CEST 2005

On Fri, 10 Jun 2005, Toman Arpad wrote:

> I read the README.x509 file and found this:
> "rightrsasigkey parameter set to the magic value %cert , signifying that
>  the public key will be extracted from a X.509 certificates sent by the
>  peer"
> So i used it, but it seems to me in this case it is totaly uneffective.
> The output said:
> "issuer cacert not found
>  X.509 certificate rejected

You need to add the public certificate of the CA in /etc/ipsec.d/cacerts/


More information about the Users mailing list