From: Andreas Steffen (andreas.steffen_at_strongsec.net)
Date: Thu Aug 15 2002 - 19:53:17 CEST
The error you are reporting can have various origins:
- Does the validity range of your CA certificate form an outer
bracket for the validity of FreeS/WAN's host certificate?
If not then authentification will fail.
- Do you have some special characters like '&' or '@' in
your Distinguished Name? '@' in E=... though seems to be ok.
- Do you use the same host certificate both for your XP client
and FreeS/WAN. XP does not seem to like this.
Regards
Andreas
John McEntee wrote:
> Help ;)
>
> I have set-up a road-warrior VPN with linux and FreeS/WAN on the company
> connection, and Win 2000 and XP clients, using Nate Carlson's
> instructions (x.509 patch etc).
>
> The windows 2000 clients work fine but using the same certificate on the
> Windows XP clients and I get the
> 8-14 21:15:53:936:264 IKE authentication credtials are unacceptable
> from the debug log.
>
> I can't find any significant differences between the 2000 and XP clients.
>
> I can get the connection to work by going to the filter action
> properties and changing it from Negotiate security to Permit for all
> four filters, but I assume this is insecure?
>
> Any suggestions?
>
> John
-- ====================================================================== Andreas Steffen e-mail: andreas.steffen_at_strongsec.com strongSec GmbH phone: +41 76 340 25 56 Alter Zürichweg 20 home: http://www.strongsec.com CH-8952 Schlieren (Switzerland) ==========================================[strong internet security]==_______________________________________________ Users mailing list Users_at_lists.freeswan.org http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.4 : Fri Aug 16 2002 - 00:19:44 CEST