[Vpn-help] certificates (p12)
Rodrigo Ferroni
rferroni at gmail.com
Wed Sep 3 17:39:33 CDT 2008
Hi Matthew,
We are using the release 2.1.1 stable on around 40 pc's with win/xp and the
server on debian (racoon with mode_cfg, auth. ldap and pki); we are using
also a few clients on ubuntu (our notebooks) and works great.
I can tell you we had some issues installing but reading your post (problems
with client install or unistall) help us a lot, to understand how the
installation process work and solve the problems.
About one recently post related to reboot the machine, we do two things to
avoid this, one is like you post said, go to "Device Manager", select "Show
hidden devices" and sometimes you can see "Shrew Soft Virtual Adapter"
disable, you need to enable this. And the other thing that we do is restart
the "ike services" in the Trace Utility. I hope this help.
My question is about the certificates, we are using the "Server Certificate
Autority File" with the file extension pem, the "Client Cert. File":
someone.crt and the "Client Private Key File": someone.key. The CA is
develop and mantein for as, we create the certificates and also we create
the p12 container with one "export password". So if you replace the .crt and
the .key with the p12 works fine, but every time you click on "connect" the
export passwd is asked. Is posible imput the passwd only one time when you
configure the VPN Site???
Well, thanks for everything !
take care, rodrigo.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.shrew.net/pipermail/vpn-help/attachments/20080903/34c2352c/attachment.html>
More information about the vpn-help
mailing list