[Swan] Self-signed certificate (X509: temporary cert import operation failed)
Paul Wouters
paul at nohats.ca
Fri Aug 10 18:03:15 UTC 2018
On Wed, 25 Jul 2018, Qiuyu Xiao wrote:
> Subject: [Swan] Self-signed certificate (X509: temporary cert import operation
> failed)
>
> Hi everyone,
>
> I am trying to configure a host-to-host transport IPsec tunnel. Each
> host uses the other host's self-signed certificate to do
> authentication. But I encountered some "X509: temporary cert import
> operation failed" error.
Please use raw keys instead of self-signed certificates.
https://libreswan.org/wiki/HOWTO:_Using_NSS_with_libreswan#Using_raw_RSA_keys_with_NSS
Paul
More information about the Swan
mailing list