[strongSwan] Fwd: "No trusted RSA public key found for [..]" again

Tobias Brunner tobias at strongswan.org
Mon Sep 16 10:37:00 CEST 2019


> What really confuses me is the CN in the error message: "No trusted RSA 
> public key found for ‘CN=LANCOM VPN’", because no certificate uses this 
> CN, nor any of the config files (see below) or the VPN server config. 
> Where does this value come from?

It's the identity the peer sends (IDr), which won't work as it's not
confirmed by the certificate.  So make it use an identity contained in
the certificate (SAN or full subject DN).


More information about the Users mailing list