On 08/22/14 16:57, Paul Wouters wrote: > On Fri, 22 Aug 2014, Remy van Elst wrote: > >>> chpasswd(8) can do that, but the pam method in pluto doesn't run >>> anything >>> through crypt (it will leave the password verification to the pam >>> stack), >>> and crypt would support the SHA512 type. Is your system-auth >>> configuration much >>> different than the RHEL/CentOS default? >> >> It is a default CentOS (7) shadow file. > > I am confused. Are you trying to use a copy of /etc/shadow as > /etc/ipsec.d/passwd with xauthby=file? Or are you trying to use system > authentication with xauthby=pam ? > > If the first, did you actually add ":connname" to each line and remove > the trailing colons? > > Paul
I want to use system authentication with xauthby=pam. Not copy the shadow file.
0x1B7F88DC.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
