November 13th, 2007, 03:05 PM
Query regarding DER format certificate & key
I converted PEMformat certificate & key to DER format using these commands :-
CA certificate :-
openssl x509 -in demoCA/cacert.pem -inform PEM -out demoCA/cacert.der -outform DER
Own certificate: -
openssl x509 -in tester_cert.pem -inform PEM -out tester_cert.der -outform DER
Private Key: -
openssl rsa -in tester_key.pem -inform PEM -out tester_key.der -outform DER
But now I start negotation using racoon, during negotation it gives error:-
2007-11-02 16:16:19: DEBUG: filename: /etc/IPSec/certs/tester_cert.der
2007-11-02 16:16:59: ERROR: failed to get my CERT.
2007-11-02 16:16:59: ERROR: failed to get own CERT.
2007-11-02 16:16:59: ERROR: failed get my ID
2007-11-02 16:16:59: ERROR: failed to process packet.
2007-11-02 16:16:59: ERROR: phase1 negotiation failed.
If I use PEM format files it works fine, racoon support DER format key & certificate or not ?
please any one help me.
November 13th, 2007, 06:37 PM
AFAIK, yes. That error sounds to me like either 1. the cert is not in the /etc/IPSec/certs/ folder or 2. The permissions on the cert are incorrect.
is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.
By cheyenne1212 in forum Miscellaneous Security Discussions
Last Post: February 1st, 2012, 02:51 PM
By nebulus200 in forum Other Tutorials Forum
Last Post: August 3rd, 2004, 06:32 PM
By SonofGalen in forum The Security Tutorials Forum
Last Post: February 9th, 2004, 11:14 AM
By thehorse13 in forum The Security Tutorials Forum
Last Post: February 11th, 2003, 02:58 PM