Query regarding DER format certificate & key
Results 1 to 2 of 2

Thread: Query regarding DER format certificate & key

  1. #1
    Junior Member
    Join Date
    Nov 2007
    Posts
    1

    Query regarding DER format certificate & key

    Hi,

    I converted PEMformat certificate & key to DER format using these commands :-
    CA certificate :-
    openssl x509 -in demoCA/cacert.pem -inform PEM -out demoCA/cacert.der -outform DER

    Own certificate: -
    openssl x509 -in tester_cert.pem -inform PEM -out tester_cert.der -outform DER

    Private Key: -
    openssl rsa -in tester_key.pem -inform PEM -out tester_key.der -outform DER

    But now I start negotation using racoon, during negotation it gives error:-

    2007-11-02 16:16:19: DEBUG: filename: /etc/IPSec/certs/tester_cert.der
    2007-11-02 16:16:59: ERROR: failed to get my CERT.
    2007-11-02 16:16:59: ERROR: failed to get own CERT.
    2007-11-02 16:16:59: ERROR: failed get my ID
    2007-11-02 16:16:59: ERROR: failed to process packet.
    2007-11-02 16:16:59: ERROR: phase1 negotiation failed.


    If I use PEM format files it works fine, racoon support DER format key & certificate or not ?
    please any one help me.

    Thanks,
    Vaibhav

  2. #2
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,324
    AFAIK, yes. That error sounds to me like either 1. the cert is not in the /etc/IPSec/certs/ folder or 2. The permissions on the cert are incorrect.
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

Similar Threads

  1. Windows Error Messages
    By cheyenne1212 in forum Miscellaneous Security Discussions
    Replies: 7
    Last Post: February 1st, 2012, 02:51 PM
  2. Replies: 0
    Last Post: August 3rd, 2004, 06:32 PM
  3. Foot Printing with Host
    By SonofGalen in forum The Security Tutorials Forum
    Replies: 7
    Last Post: February 9th, 2004, 11:14 AM
  4. HOW TO: sign a certificate request with OpenSSL
    By thehorse13 in forum The Security Tutorials Forum
    Replies: 0
    Last Post: February 11th, 2003, 02:58 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •