[Openswan Users] Bls: unable to locate my private key for RSA signature
Paul Wouters
paul at xelerance.com
Wed Jul 22 14:10:26 EDT 2009
On Wed, 22 Jul 2009, andi tri wrote:
> > # ipsec auto --listcerts
> > i don't see "has private key"
> > # /var/log/auth.log
> > Jul 14 22:25:14 andi-laptop pluto[4689]: "mommy" #1: unable to locate my private key for RSA Signature
>
> Did you put the private key in /etc/ipsec.d/private/ and put a line in ipsec.secrets to load it?
>
> > b'coz the cert can't load i try make CA based on building virtual private network with openswan.pdf, and
> > nothing changing.
>
> See openswan-2.6.x/testing/x509/dist_certs for an examples script on how to generate a CA and certs.
>
> Paul
>
>
> Yes, i put private key in /etc/ipsec.d/private/ and put a line in ipsec.secrets like this:
> : RSA andicert.pem "ipsec"
Something is wrong then, because if --listall does not show "has private key" that means something
is wrong with the files.
> In /root, /etc, etc. I can't find openswan-2.6.x/testing/x509/dist_certs. What is the directory?
> Sorry I'm newbie in linux and openswan.
It's only in the openswan source package, not in any binary package install.
Paul
More information about the Users
mailing list