[Openswan Users] Bls: unable to locate my private key for RSA signature

Paul Wouters paul at xelerance.com
Wed Jul 22 14:10:26 EDT 2009


On Wed, 22 Jul 2009, andi tri wrote:

> > # ipsec auto --listcerts
> >  i don't see  "has private key"
> > # /var/log/auth.log
> > Jul 14 22:25:14 andi-laptop pluto[4689]: "mommy" #1: unable to locate my private key for RSA Signature
> 
> Did you put the private key in /etc/ipsec.d/private/ and put a line in ipsec.secrets to load it?
> 
> > b'coz the cert can't load i try make CA based on building virtual private network with openswan.pdf, and
> > nothing changing.
> 
> See openswan-2.6.x/testing/x509/dist_certs for an examples script on how to generate a CA and certs.
> 
> Paul
> 
> 
> Yes, i put private key in /etc/ipsec.d/private/ and put a line in ipsec.secrets like this:
> : RSA andicert.pem "ipsec"

Something is wrong then, because if --listall does not show "has private key" that means something
is wrong with the files.

> In /root, /etc, etc. I can't find openswan-2.6.x/testing/x509/dist_certs. What is the directory?
> Sorry I'm newbie in linux and openswan.

It's only in the openswan source package, not in any binary package install.

Paul


More information about the Users mailing list