StrongSwan: Difference between revisions
m Saved progress so far |
m →Packaging the required certificates and keys for Windows: Added password required |
||
| Line 93: | Line 93: | ||
# Use OpenSSL to create the PKCS#12 package: | # Use OpenSSL to create the PKCS#12 package: | ||
#:<pre>openssl pkcs12 -export -inkey private/client1key.pem -in certs/client1cert.pem -name "Windows Client 1 VPN Certificate" -certfile cacerts/CAcert.pem -caname "strongSwan Root CA" -out client1.p12</pre> | #:<pre>openssl pkcs12 -export -inkey private/client1key.pem -in certs/client1cert.pem -name "Windows Client 1 VPN Certificate" -certfile cacerts/CAcert.pem -caname "strongSwan Root CA" -out client1.p12</pre> | ||
# Type a password you will remember when asked. This will protect the private key while it is in transit. | |||
# Retype the passsword you just typed. | |||
The name field gives the certificate a friendly name when installed in Windows and can be anything. The p12 file needs to be copied locally to the Windows machine that the certificates and keys need installing on. | The name field gives the certificate a friendly name when installed in Windows and can be anything. The p12 file needs to be copied locally to the Windows machine that the certificates and keys need installing on. | ||