[Openswan Users] Openswan - Windows native

Paul Wouters paul at xelerance.com
Sun Jun 12 00:26:04 CEST 2005

On Sat, 11 Jun 2005, Toman Arpad wrote:

> Well i did that (log shows and tells it is loaded).

If the log says it is loaded, and you still get the error, then the 
incoming certificate is not signed by the cacert you just loaded.


> Bye
> On Sat, 11 Jun 2005, Paul Wouters wrote:
>> On Fri, 10 Jun 2005, Toman Arpad wrote:
>>> I read the README.x509 file and found this:
>>> "rightrsasigkey parameter set to the magic value %cert , signifying that
>>>  the public key will be extracted from a X.509 certificates sent by the
>>>  peer"
>>> So i used it, but it seems to me in this case it is totaly uneffective.
>>> The output said:
>>> "issuer cacert not found
>>>  X.509 certificate rejected
>> You need to add the public certificate of the CA in /etc/ipsec.d/cacerts/
>> Paul
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users


   "I am not even supposed to be here today!"  -- Clerics

More information about the Users mailing list