[Openswan Users] CKAIDNSS keyword not found where expected in RSAkey in /var/log/secure

Avesh Agarwal avagarwa at redhat.com
Wed Jul 8 14:21:57 EDT 2009


Greg Scott wrote:
>> Which version you are using?  I released 2.6.21-5 in F11, and not sure
>>     
> if it is reached to you yet.
>
> Looks like I'm using 2.6.21-4.
>
>
> [root at huge-fw ipsec.d]#
> [root at huge-fw ipsec.d]# ipsec version
> Linux Openswan U2.6.21/K2.6.29.5-191.fc11.i686.PAE (netkey)
> See `ipsec --copyright' for copyright information.
> [root at huge-fw ipsec.d]#
> [root at huge-fw ipsec.d]#
> [root at huge-fw ipsec.d]# rpm -qa | grep openswan
> openswan-2.6.21-4.fc11.i586
> [root at huge-fw ipsec.d]#
>   
Before you get 2.6.21-5, try following:

 certutil -N -d sql:/etc/ipsec.d

modutil -fips true  -dbdir  sql:/etc/ipsec.d

Then create RSA keys.

Avesh


More information about the Users mailing list