All Questions
Tagged with ipsec certificates
9 questions
2
votes
2
answers
2k
views
Certificates(CA certificate and EE/Local certiificate)
There is a small confusion related to CA certificate and Local certificate. I had asked a similar question before. This time, its a little specific.
For authentication using PKI, below are the steps.
-...
- 133
0
votes
1
answer
663
views
StrongSwan, IPsec remote certs and cert_policy
I'm looking for a way to limit the certs that my IPsec can accept. I'm using StrongSwan (swanctl version 5.7), I want to accept only certs coming from a remote with a name of yoji.*.example.com
I ...
- 1
1
vote
1
answer
2k
views
How hard is it to retrieve IKEv2 Server Certificate from the server?
I got access to a VPN via IPsec and IKEv2. The provider gave me a username, a shared secret and a server certificate. Since the certificate was self-signed, the manual came with specific instructions ...
- 115
2
votes
2
answers
1k
views
Maximum number of certificates generated by a CA
What is the maximum number of certificates that can be generated from a CA?
The use case is a VPN using certificate authentication and I would like to know what is the theoretical number of unique ...
- 43
1
vote
2
answers
1k
views
TLS or IPsec protocol for client-server communication? [duplicate]
What is the best protocol for client-server communication? TLS or IPsec? I have a public channel where users communicate with each other using a digital certificate like X.509.
- 339
1
vote
1
answer
1k
views
How to authenticate to racoon with a certificate chain if only the root CA is known
I'm trying to setup IPsec using x509 certificates on Linux. I'm using racoon for that task. I've come to the point where the authentication works fine if I keep every link of the certificate chain on ...
- 2,339
6
votes
2
answers
11k
views
How do I make or get computer certificates to use with IPSEC user authentication on Windows?
I am having trouble and need some direction using computer certificates with Windows 7 firewall IP Security rules, using certificates only for user authentication. I can get everything to work ...
- 61
2
votes
2
answers
556
views
Using External Certificates on a network that doesn't permit outbound HTTP/S access
Some highly secure networks and DMZs prevent all communication to outside hosts. This can cause issues with validating externally signed data
I can guess that issues with signature validation occur ...
- 51.1k
2
votes
1
answer
522
views
Does iOS use built-in certificates to authenticate peers when using ipsec VPNs?
Suppose I am setting up an IPsec VPN for Apple iOS clients with the requirement that the iOS clients need to know that the server is legitimate and vice-versa.
I create a root CA and issue a ...
- 129