[Openswan Users] Is it possible to auth by either psk or rsa?

Paul Wouters paul at xelerance.com
Thu Jul 15 13:19:11 EDT 2010


On Wed, 14 Jul 2010, Brad Peterson wrote:

> The authby section of man ipsec.conf(5) says authby can have a value of 'secret|rsasig' to accept either.  I'm running openswan 2.6.25 and
> get an error using that value:  "WARNING: /etc/ipsec.d/l2tp-psk.conf: 2: keyword authby, invalid value: secret|rsasig"
> 
> I haven't found any mention in the docs, the git commits, or online of this option being removed.  Was it replaced with anything?

I think we just never extended the parser for that. I think ideally, we would use a new keyword
for this situation.

It is a very uncommon scenario, and best avoided btw.

Paul


More information about the Users mailing list