On Fri, 1 Sep 2023, Nels Lindquist wrote:
On 2023-09-01 3:40 PM, Paul Wouters wrote:
Not with windows, they need a new valid PKCS12 certificate bundle.
I thought that too, but it turns out not to be the case!
I was able to "heal" the chain for Windows by importing a new CA certificate
PEM file (requested and signed from the same private key, with the identical
Subject) into the "Trusted Root Certification Authorities" section of the
Computer certificate store.
We are saying the same thing. You are fixing the bundle by adding the
new valid CA :)
Paul
_______________________________________________
Swan mailing list
[email protected]
https://lists.libreswan.org/mailman/listinfo/swan
