On Mon, 4 Feb 2019 09:00:00 +0000 LAURIA Giuseppe <[email protected]> wrote:
> Hi Paul. > Thank you very much. > > >> As long as the IKE ID you are using is either the RDN or one of > >> the subjectAltNames, you should be fine. > > As I understand an RDN is one of the components of a DN ( RDN= > relative distinguished names ). And could be different things, so > which one are you referring ? Did you maybe mean CN ( CommonName )? > ( eg "CN=<server-fqdn>" ) ? No. IKE uses ID_DER_ASN1_DN which is subject of the certificate. It is complete DN. -- Tuomo Soini <[email protected]> Foobar Linux services +358 40 5240030 Foobar Oy <https://foobar.fi/> _______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
