[strongSwan] Accepting cert of unknown source

John Brown jb20141125 at gmail.com
Fri Jul 28 11:10:12 CEST 2017


Hello all,

I know this is security issue but because of some other factors in one
particular case during setup we consider disabling root ca checking in
strongswan during tunnel establishement process. In other words: strongswan
is an IKEv2 initiatior. We would like to have tunnel established even if
responder send us a certificate which is signed by unknown root ca. Is this
possible to achieve that in strongswan?

Best regards,
John
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170728/e4722874/attachment-0001.html>


More information about the Users mailing list