Thanks, Based on response i was able to resolve my issue. I was removing
"/" when reading the subject.
-Rajeev
On Fri, Feb 9, 2018 at 11:02 AM, Tobias Brunner
wrote:
> Hi Rajeev,
>
> > Using DAVICI, I did make sure local.id is "C=US,
> > O=ARRIS Group, Inc., OU=DCA Remote Device Certificate,
Hi Rajeev,
> Using DAVICI, I did make sure local.id is "C=US,
> O=ARRIS Group, Inc., OU=DCA Remote Device Certificate, CN=FF:FF:05:E6:E7:80"
The comma between "Group" and "Inc." in the O RDN lets the identity
string parser fail and this string will not be treated as ASN.1 DN but
as opaque key ID
Let me know I can send you more information.
On Thu, Feb 8, 2018 at 12:19 PM, rajeev nohria wrote:
>
>
> Now I am getting the following error and not able to resolve this for
> sometime. Any inkling is helpful here.
>
>
> Using DAVICI, I did make sure local.id is "C=US, O=ARRIS Group, Inc.,
> O
Now I am getting the following error and not able to resolve this for
sometime. Any inkling is helpful here.
Using DAVICI, I did make sure local.id is "C=US, O=ARRIS Group, Inc.,
OU=DCA Remote Device Certificate, CN=FF:FF:05:E6:E7:80"
What else I be missing?
writing RSA key
11[CFG] loaded RSA
Andreas,
There was an issue with creating private RSA key. That has been resolved
now. Thanks for the direction.
Rajeev
On Wed, Feb 7, 2018 at 1:05 AM, Andreas Steffen <
andreas.stef...@strongswan.org> wrote:
> Hi Rajeev,
>
> the private key itself does not pass the key integrity tests of
> the
Hi Rajeev,
the private key itself does not pass the key integrity tests of
the gpm plugin. How did you create the private RSA key?
Regards
Andreas
On 07.02.2018 04:43, rajeev nohria wrote:
>
>
> I am getting following error.
>
> writing RSA key
> 11[LIB] key integrity tests failed
> 11[LIB]
I am getting following error.
writing RSA key
11[LIB] key integrity tests failed
11[LIB] building CRED_PRIVATE_KEY - RSA failed, tried 8 builders
What could be wrong? I verified the certificate and private key from
following site and they matched.
https://www.sslshopper.com/certificate-key-match
hi all,
I have a strongswan server (U5.5.0/K3.12.28+) on a raspberry pi & two devices :
a windows 10 surface tab & an Ipad (10.21).
I want to activate ikev2/ipsec vpns. I use built-in ikev2 clients.
So far the only working conf is with iPad and psk - I was forced to use apple
configurato