[strongSwan] Cert question

Gary Smith gary.smith at holdstead.com
Thu Feb 24 17:44:43 CET 2011

I think I almost have my first ptp connection setup. It seems to be getting hung up on the certs at this point. I had what I though was a working cert, but apparently it didn't have the private key in it. I thought I had exported the private key as well. I re-exported the key with cert chain, but that didn't help.

I think I'm a little confused as to where the keys need to go. Do I need to export the cert (without key) and dump it into /etc/ipsec.d/certs and export the key separately and dump it into /etc/ipsec.d/private? 

Anyway, I'm using tinyca to manage the certs. I'm just missing what options I need to make this happen.

Gary Smith

More information about the Users mailing list