[strongSwan] Trouble configuring vpn connection to strongswan using smartcard

Nathan Hüsken nathan at wintercloud.de
Fri Jul 20 19:23:23 CEST 2018


OK, in the end my mistake was, that I believed the pkcs#11 Plugin was enabled in charon-nm, as it was only enabled in strongswan itself. It works now.
Thanks for pointing that out and thanks for all the help!



Dr. Nathan Hüsken

Cloud Developer

nathan at wintercloud.de

+49 151 703 478 84

wintercloud GmbH & Co. KG

Emil-Maier-Str. 16

69115 Heidelberg


Sitz der Kommanditgesellschaft: Heidelberg, Registernummer der Kommanditgesellschaft im Handelsregister: AG Mannheim HRA 707268

Komplementärin: junah GmbH, Sitz der Komplementärin: Heidelberg, Registernummer der Komplementärin im Handelsregister: AG Mannheim HRB 726538, Geschäftsführer der Komplementärin: Julian Wintermayr und Dr. Nathan Hüsken

USt-IdNr.: DE815676705​

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐

On 19 July 2018 7:50 PM, Tobias Brunner <tobias at strongswan.org> wrote:

> ​​
> Hi Nathan,
> > I wanted to use the network-manager (in the end, the config has to be usable by people scared of the command line).
> > 
> > There is an option: "Smartcard". If choose it, it asks me for the pin of the smart card (but complains, that there are not usable certificates on the smartcard).
> > 
> > If charon-nm doest not support reading the private key from the smartcard, what is the point of this option?
> > 
> > What am I missing here?
> You are confusing charon-cmd and NM/charon-nm (and perhaps charon).
> charon-nm supports private keys on smartcards (with the already
> mentioned limitations), as does charon (with more flexibility),
> charon-cmd does not.
> Regards,
> Tobias

More information about the Users mailing list