From: F. S. <fre...@la...> - 2005-04-28 21:55:05
|
Thursday, April 28, 2005, 10:48:31 PM, you wrote: > Hi > Can you tell me, how I can import certificate into cisco VPN client? > Because when I try it, I've got a message "Certificate successfully > imported.", but I don't see it in certificates list... You have to check the "show CA/RA certificates" option in the "certificates" menu. > Also, problem can be with generating certificates. Here is my procedure: [...] That should be good (I'm no OpenSSL pro, I use xca - a sourceforge project for a "simple" and graphical CA management - myself). > I use newkey.pem and newcert.pem in racoon.conf certificate_type section > and CAcert.pem in cisco VPN client. Yes, that should be good too. Did you put your CACert in the certificates dir, too (not 100% sure it's needed, though) ? You'll need to provide a ca_type directive in racoon.conf, too. Maybe take a look at http://www.kame.net/newsletter/20001119b/ for more info ; the very last section contains some black magic I never quite understood... :} Fred -- I had a message the other day from someone threatening to call their very good friend, the mailer-daemon's boss, and have it sacked. (Alistair J. R. Young) |