sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-07 00:01:49 -04:00
Code Issues Projects Releases Wiki Activity

Add leftcert ipsec.conf.5 documentation about smartcard certificates

Browse Source
This commit is contained in:
Martin Willi 2012-10-15 18:14:03 +02:00
parent 9687cb5100
commit 05e266ea9d
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
man/ipsec.conf.5.in
View File

@ -589,6 +589,18 @@ to the distinguished name of the certificate's subject.
The left participant's ID can be overridden by specifying a The left participant's ID can be overridden by specifying a
.B leftid .B leftid
value which must be certified by the certificate, though. value which must be certified by the certificate, though.
.br
A value in the form
.B %smartcard:<keyid>
defines a specific certificate to load from a PKCS#11 backend for this
connection.
.B <keyid>
has to be a hex encoded key identifier under which the certificate is stored
on any of the configured smartcards.
.B leftcert
is required only if selecting the certificate with
.B leftid
is not sufficient, for example if multiple certificates use the same subject.
.TP .TP
.BR leftcert2 " = <path>" .BR leftcert2 " = <path>"
Same as Same as