[strongSwan] rejecting certificate without digitalSignature or nonRepudiation, keyUsage flags

Tobias Brunner tobias at strongswan.org
Wed Oct 30 17:37:23 CET 2019

Previous message (by thread): [strongSwan] rejecting certificate without digitalSignature or nonRepudiation, keyUsage flags
Next message (by thread): [strongSwan] rejecting certificate without digitalSignature or nonRepudiation, keyUsage flags
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

> Is the problem caused be my certificates being crafted in a way which
> did not comply with what Strongswan requires?

Yep.

> Or this can be resolved with configuration?

No.  Either don't add any keyUsage flags to the certificate, or include
at least one of the mentioned flags.

Regards,
Tobias

Previous message (by thread): [strongSwan] rejecting certificate without digitalSignature or nonRepudiation, keyUsage flags
Next message (by thread): [strongSwan] rejecting certificate without digitalSignature or nonRepudiation, keyUsage flags
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list