[strongSwan] Problem to read private key - x509

Andreas Steffen andreas.steffen at strongswan.org
Mon Mar 5 15:50:19 CET 2012

Hi Leandro,

either the syntax in your private key file is not correct or
the key file is encrypted and you didn't specify the passphrase
in /etc/ipsec.secrets.

 : RSA 198key.pem "<passphrase>"

 You can increase the debug level to

   charondebug="lib 4"

and check for additional error messages in the log file.



On 05.03.2012 15:31, Leandro . wrote:
> HI,
> I've created de certificates x509 in /root/certs, after this, I've
> copied the certificate to /etc/ipsec.d/certs and the private key to
> /etc/ipsec.d/private.
> However, there is a problem to load the private key:
> _
> 00[CFG]   loading private key from '/etc/ipsec.d/private/198key.pem' failed_
> My question: how can I force to strongswan read the private key in this
> directory ?
> Or clean some information, to read a new file?
> I did ipsec rereadall, rereadcacerts, but didn't work.
> Thank you.
> -- 
> *Jefferson Leandro*
> *Curitiba - BR*

Andreas Steffen                         andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution!                www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4489 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20120305/c4097a75/attachment.bin>

More information about the Users mailing list