Re: [Users] no RSA public key found

From: Jussi Torhonen (jt_at_ssh.com)
Date: Wed Oct 30 2002 - 12:16:35 CET

• Next message: Jarek Karpiel: "*****SPAM***** [Users] Sonicwall and FreeSWAN"
• Previous message: martin f krafft: "Re: [Users] no RSA public key found"
• In reply to: Andreas Steffen: "Re: [Users] no RSA public key found"
• Next in thread: martin f krafft: "Re: [Users] no RSA public key found"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Andreas Steffen wrote:
> You take the private key file myKey.pem and store it in the directory
> /etc/ipsec.d/private. The private key is loaded via ipsec.secrets with
> the statement
>
> : RSA myKey.pem "<optional 3DES password>"

I found that you can use OpenSSL certificate request as a RSA privkey
file as above.

# cd /usr/share/ssl/misc
# ./CA[.pl] -newcert
# ./CA[.pl] -signcert
# cp newreq.pem /etc/ipsec.d/myKey.pem
# cp newcert.pem /etc/ipsec.d/myCert.pem

The request includes the privkey and x509patched FreeSWAN is able to dig
the privkey from the file. This makes installation procedure pretty easy.

Jussi
______________________________________________________________
SSH Communications Security Corp, http://www.ssh.com
SSH Sentinel VPN Client, http://www.ipsec.com

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Jarek Karpiel: "*****SPAM***** [Users] Sonicwall and FreeSWAN"
• Previous message: martin f krafft: "Re: [Users] no RSA public key found"
• In reply to: Andreas Steffen: "Re: [Users] no RSA public key found"
• Next in thread: martin f krafft: "Re: [Users] no RSA public key found"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Thu Oct 31 2002 - 05:20:35 CET