[Openswan Users] Checking for RSA private key (/etc/ipsec.secrets) [DISABLED]
Paul Wouters
paul at xelerance.com
Wed Apr 1 11:12:56 EDT 2009
On Wed, 1 Apr 2009, shawnlau wrote:
> When I use the x509 certification to connection two network, For I have set the password
> for private key, So I add the line
>
> : RSA /etc/ipsec.d/private/right.key “passwd” to /etc/ipsec.secrets file.
> After that , I restart ipsec service , and checked the ipsec status by command ipsec
> verify. Then:
> Checking for RSA private key (/etc/ipsec.secrets) [DISABLED]
> Is there any question in my openswan or it’s normal.
That RSA private key is different from your own X.509 private RSA key. The RSA key
ipsec verify is showing is for raw RSA connections using leftrsasigkey=. You are
not using that, as you are using RSA keys in X.509 containers.
Paul
More information about the Users
mailing list