[ previous ] [ next ] [ threads ]
 
 From:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] RSA Signature Authentication problem using XCA
 Date:  Sun, 13 Dec 2009 13:35:57 -0500
On Sun, Nov 22, 2009 at 1:34 PM, Joe <j dot commisso at verizon dot net> wrote:
> Hello,
>
> I have a site to site vpn set up with m0n0 to m0n0 using pre shared keys and
> it has been working for over a year.
>
> I would like to use RSA Signature Authentication and have followed the
> following instructions:
> <http://doc.m0n0.ch/handbook/ipsec-rsa-auth.html>
>
> When I try to "Save" the configuration on the m0n0wall web interface on the
> ipsec edit page, I get the following:
>
> The following input errors were detected:
>

>
> I think this is referring to the private key.
> I have searched the mailing list, the forum, and the web, but I don't see
> anything that even comes close to explaining this.
>

Look at the source code.

		if (!strstr($_POST['p1privatekey'], "BEGIN RSA PRIVATE KEY") ||
!strstr($_POST['p1privatekey'], "END RSA PRIVATE KEY"))
			$input_errors[] = "This key does not appear to be valid.";	


So your key does not contain the listed BEGIN and/or END, and hence is
not a valid key.