[strongSwan] scepclient and encrypted private key

[Dariusz Gadomski]

On Mon, May 07, 2018 at 04:29:04PM +0200, Tobias Brunner wrote:
> > Does it use the information in /etc/ipsec.secrets or is there another
> > way?
> 
> It doesn't.  You have to decrypt the key to use it with scepclient.

Thank you Tobias. I guess I was mislead by the fact that there are
traces of an attempt to implement this (like a call to pem_decrypt if
a passphrase has been returned from the enumerator).

I'll stick to unencrypted keys then.

Thanks,
Dariusz