[ previous ] [ next ] [ threads ]
 From:  "Naber, Peter" <peter dot naber at alfa dot de>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  asn1dn identifier
 Date:  Mon, 10 Oct 2005 18:28:40 +0200

i have wrote the same thing under the subject "X509 Tunnel m0n0wall to openswan" and the thread
result into a wish of me for m0n0wall.

I use x509 Certificates for dynamic IP Adresses. With PSK all road warrior must have the same Key,
so Certificates are necessary for more security.
I think the m0n0wall needs the identifer "asn1dn" or similar that the identification will work
correctly in combination with openswan certificate authentication. 
This identifer must fill automatically with the Subject of the certificate or the user of the
m0n0wall will have the chance to declare the Subject DN of the certificate in a text field.
Is this possible or will this feature violate a RFC ??


Peter Naber

Peter Naber
alfa-it Services GmbH
Steinheimer Str. 117
D-63500 Seligenstadt
Phone +49-6182-804-390
Fax +49-6182-804.112