[strongSwan] ikev1 mutual certificate authentication

Martin Willi martin at strongswan.org
Tue Oct 1 10:18:02 CEST 2013


> authentication of <server DN> (myself) successful

> What does the "(myself)" part do to validate itself?

It just means that the server successfully created a signature for
authentication using the mentioned certificate's private key. The client
then verifies the same signature to authenticate the server.

> authentication of <client DN> with RSA successful

The server does the opposite here, verifying the signature that the
client created.


More information about the Users mailing list