[Swan] Self signed certificate support

Paul Wouters paul at nohats.ca
Thu Jun 11 21:48:39 UTC 2020

Yes l, self signed certificates can be used. Both endpoints need to have both certificates imported in the nss db and use leftcert= and rightcert=

An “SSL certificate” is just a certificate and can be used - eg you can use a letsencrypt certificate with libreswan.


Sent from my iPhone

> On Jun 11, 2020, at 17:10, Shweta Kalyani <shwetakalyani at gmail.com> wrote:
> Hello,
> I wanted to know if self signed certificates can be used for authentication when creating IKEv1/IKEv2 tunnels?
> Also can only SSL certificates be used without the CA certificate?
> Thanks,
> Shweta
> _______________________________________________
> Swan mailing list
> Swan at lists.libreswan.org
> https://lists.libreswan.org/mailman/listinfo/swan

More information about the Swan mailing list