[strongSwan] question about rightca
noel.kuntze+strongswan-users-ml at thermi.consulting
Tue Sep 5 13:33:59 CEST 2017
> a matching root CA by default
What do you mean with that? charon always authenticates the certificates. You can't turn that off.
On 05.09.2017 13:27, Harald Dunkel wrote:
> Hi folks,
> the documentation says for left|rightca:
> %same means that the value configured for the other participant
> should be reused.
> Please note the "configured". How can I tell charon to do require
> a matching root CA by default, without explicitly configuring the
> peer's CA?
> I am not sure if this approach would be reasonable. Is it? Every
> helpful comment is highly appreciated
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 833 bytes
Desc: OpenPGP digital signature
More information about the Users