[Openswan Users] Openswan - Windows native
Paul Wouters
paul at xelerance.com
Sun Jun 12 00:26:04 CEST 2005
On Sat, 11 Jun 2005, Toman Arpad wrote:
> Well i did that (log shows and tells it is loaded).
If the log says it is loaded, and you still get the error, then the
incoming certificate is not signed by the cacert you just loaded.
Paul
> Bye
>
> On Sat, 11 Jun 2005, Paul Wouters wrote:
>
>> On Fri, 10 Jun 2005, Toman Arpad wrote:
>>
>>> I read the README.x509 file and found this:
>>> "rightrsasigkey parameter set to the magic value %cert , signifying that
>>> the public key will be extracted from a X.509 certificates sent by the
>>> peer"
>>>
>>> So i used it, but it seems to me in this case it is totaly uneffective.
>>> The output said:
>>> "issuer cacert not found
>>> X.509 certificate rejected
>>
>> You need to add the public certificate of the CA in /etc/ipsec.d/cacerts/
>>
>> Paul
>>
>>
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
>
--
"I am not even supposed to be here today!" -- Clerics
More information about the Users
mailing list