diff options
author | Tobias Brunner <tobias@strongswan.org> | 2013-04-01 16:42:53 +0200 |
---|---|---|
committer | Tobias Brunner <tobias@strongswan.org> | 2013-05-07 17:08:31 +0200 |
commit | 87692be21536a586e5245cdda795134b7cfb2895 (patch) | |
tree | f627ca1a78142f4499f9df4e8e2cdf873231fbab /man/ipsec.conf.5.in | |
parent | fa1d3d39dc50ce8f8ce55f838edb02b3ffd07bbe (diff) | |
download | strongswan-87692be21536a586e5245cdda795134b7cfb2895.tar.bz2 strongswan-87692be21536a586e5245cdda795134b7cfb2895.tar.xz |
Load any type (RSA/ECDSA) of public key via left|rightsigkey
Diffstat (limited to 'man/ipsec.conf.5.in')
-rw-r--r-- | man/ipsec.conf.5.in | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/man/ipsec.conf.5.in b/man/ipsec.conf.5.in index a8933531c..4ee884bcc 100644 --- a/man/ipsec.conf.5.in +++ b/man/ipsec.conf.5.in @@ -755,14 +755,16 @@ None of the kernel backends currently supports opaque or port ranges and uses .B %any for policy installation instead. .TP -.BR leftrsasigkey " = <raw rsa public key> | <path to public key>" -the left participant's public key for RSA signature authentication, in PKCS#1 -format using hex (0x prefix) or base64 (0s prefix) encoding. With the optional +.BR leftsigkey " = <raw public key> | <path to public key>" +the left participant's public key for public key signature authentication, +in PKCS#1 format using hex (0x prefix) or base64 (0s prefix) encoding. With the +optional .B dns: or .B ssh: prefix in front of 0x or 0s, the public key is expected to be in either -the RFC 3110 or RFC 4253 public key format, respectively. +the RFC 3110 (not the full RR, only RSA key part) or RFC 4253 public key format, +respectively. Also accepted is the path to a file containing the public key in PEM or DER encoding. .TP |