[strongSwan] VPN tunnel using TLS EAP is using wrong SCA cert

Tobias Brunner tobias at strongswan.org
Mon Nov 19 11:59:30 CET 2018

Hi Anthony,

> For this setup are credential directory looks like this
> /media/sde1/certs/Org1:
> Org1.chain  Org1.crt  Org1.key	Org1.sca1  Org1.ta
> /media/sde1/certs/Org2:
> Org2.chain  Org2.crt  Org2.key	Org2.sca2  Org2.ta
> So we only load the "user cert" using VICI, were letting charon select the correct key and sca.

Could you please provide more information on these certificate chains
(preferably the files themselves, but output from `pki --print` might
help too) and the configured certificates/identities (the code you added
is itself configured via `struct s_connection_parameters`).


More information about the Users mailing list