<div dir="ltr">Hi All,<div><br></div><div>Looking for some troubleshooting direction here.</div><div><br></div><div>I'm setting up a strongswan to strongswan VPN, authenticating using DN-based IDs on certificates from a private CA. </div>
<div><br></div><div>I've done this a *bunch* of times before with earlier self-compiled versions (5.0.1-5.1.0), however in 5.1.2 that comes with Ubuntu 14.04, Strongswan does not seem to like my ID:</div><div><br></div>
<div>May 30 18:54:12 office-gilligan charon: 10[CFG] id 'C=US, ST=California, L=Santa Clara, O=Company, Inc, OU=Marketing, CN=<a href="http://office.company.com">office.company.com</a>' not confirmed by certificate, defaulting to 'C=US, ST=California, L=Santa Clara, O=Company, Inc, OU=Marketing, CN=<a href="http://office.company.com">office.company.com</a>'<br>
</div><div><br></div><div>Later on, when the peer tries to connect, I get a "peer config not found". Note - I am not using SANs in my certificates (thus why I have been doing DN-based auth), which has worked before.</div>
<div><br></div><div>Are there any changes/ known bugs from 5.1.0 to 5.1.2 that could cause this? If not, are there any configuration/compilation options that could cause this? Just looking for ideas on what to try next.</div>
<div><br></div><div>Thanks,</div><div>Aaron</div></div>