PKCS#12 Secret » History » Version 1
Tobias Brunner, 23.07.2013 15:57
| 1 | 1 | Tobias Brunner | h1. PKCS#12 Secret |
|---|---|---|---|
| 2 | 1 | Tobias Brunner | |
| 3 | 1 | Tobias Brunner | For the PKCS#12 file both absolute paths or paths relative to [[IpsecDirectoryPrivate|/etc/ipsec.d/private]] are accepted. If the container is encrypted, the passphrase must be defined. Instead of a passphrase _%prompt_ can be used which then causes the daemon to ask the user for the password whenever it is required to decrypt the container. |
| 4 | 1 | Tobias Brunner | |
| 5 | 1 | Tobias Brunner | Private keys, and client and CA certificates are extracted from the container. To use such a client certificate in a [[ConnSection|connection]], set _leftid_ to one of the subjects of the certificate. |
| 6 | 1 | Tobias Brunner | |
| 7 | 1 | Tobias Brunner | This is available since [[5.1.0]]. |
| 8 | 1 | Tobias Brunner | |
| 9 | 1 | Tobias Brunner | h2. Notation |
| 10 | 1 | Tobias Brunner | |
| 11 | 1 | Tobias Brunner | |
| 12 | 1 | Tobias Brunner | : P12 _<PKCS#12 file>_ [ _<passphrase>_ | _%prompt_ ] |
| 13 | 1 | Tobias Brunner | |
| 14 | 1 | Tobias Brunner | h2. Examples |
| 15 | 1 | Tobias Brunner | |
| 16 | 1 | Tobias Brunner | <pre> |
| 17 | 1 | Tobias Brunner | : P12 moon.p12 "cjen4*lWnr3jsk" |
| 18 | 1 | Tobias Brunner | </pre> |