für die Einwahl per IKEv2 auf einen Strongswan Server habe ich für die Authentifizierung CA+Zertifikat+PrivKey bekommen.
Diese dann per openssl in ein PKCS12 zusammengepackt:
Code: Alles auswählen
openssl pkcs12 -export -in zert.pem -inkey key.key -certfile ca-certs.pem -out output.p12
Code: Alles auswählen
Meldung des Gerätes:
FAILURE
Rest der Nachricht:
<0>:
Beim Import über die WebConfig kommt selbst bei Simpel-Passworten "Bad Password" mit folgenden Meldungen im Syslog:
Code: Alles auswählen
1 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_add_cas: Undefined error: 0
2 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
3 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_rootcert: (Unknown error)
4 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
5 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_devcert: (Unknown error)
6 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
7 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_pkcs12_int: Undefined error: 0
8 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
9 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_add_cas: Undefined error: 0
10 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
11 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_rootcert: (Unknown error)
12 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
13 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_devcert: (Unknown error)
14 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
15 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_pkcs12_int: Undefined error: 0
16 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
17 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_add_cas: Undefined error: 0
18 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
19 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_rootcert: (Unknown error)
20 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
21 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_devcert: (Unknown error)
22 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
23 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_pkcs12_int: Undefined error: 0
24 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
25 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_add_cas: Undefined error: 0
26 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
27 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_rootcert: (Unknown error)
28 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
29 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_cert_file: Error reading file /flash/security/vpn/vpn_devcert: (Unknown error)
30 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: CERTIFICATE
31 2020-05-28 10:11:16 KERN Error PKCS12_lcos_read_file: Error reading PKCS#12 file /flash/security/vpn/vpn_pkcs12_int: Undefined error: 0
32 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101:
33 2020-05-28 10:11:16 KERN Notice OpenSSL: 137:error:09072007:PEM routines:PEM_write_bio:BUF lib:crypto/pem/pem_lib.c:658:
34 2020-05-28 10:11:16 KERN Error PKCS12_lcos_write_file: Error writing PKCS#12 file /flash/security/vpn/vpn_pkcs12_int: Undefined error: 0
Firmware auf dem Gerät ist die aktuelle 10.40, außerdem ist der WLAN-Controller aktiviert.
Habt ihr eine Idee woran das liegen kann?
Danke!
Marco