[Openswan Users] system could not open host cert with nick name, what is that about?

Bob Balsover ml at balsover.com
Thu Apr 29 13:31:00 EDT 2010


Sorry, I had sent this before but used the wrong email address to send it so
it was bounced.

 

Does anyone know what this error is about?  I have Googled for it and found
nothing.  I tried including the complete path to the cert, I have tried
specifying both the cert from the cert directory and the key from the
private directory, no difference.  I am not passing it a nick name, I am
specifying the file name so I don't know what the nickname comment is about,
but none of the documentation that that I have read said anything about
nicknames in the NSS DB whatever that is.

 

Does anyone know where the documentation is on this NSS DB as it pertains to
the openswan ipsec.secrets file is located?

 

/var/log/secure:

 

Apr 28 23:37:23 gateway pluto[6704]: loading secrets from
"/etc/ipsec.secrets"

Apr 28 23:37:23 gateway pluto[6704]:     could not open host cert with nick
name '/etc/ipsec.d/private/my.key' in NSS DB

Apr 28 23:37:23 gateway pluto[6704]: "/etc/ipsec.secrets" line 3: NSS
certficate not found

 

/etc/ipsec.secrets:

 

: RSA /etc/ipsec.d/private/my.key "passphrase was here"

 

#include /etc/ipsec.d/*.secrets

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20100429/ad65d830/attachment.html 


More information about the Users mailing list