Hi, I'm using iked since a few years with certificate authentication for my roadwarrior linux without any trouble.
I took a 6.8 fresh install and used classically ikectl to generate a new CA and certificates. But when I try to connect to the OBSD iked, authentication is refused for my client with this message : ca_validate_cert: /C=FR/ST=France/L=Paris/O=XXX rejecting self-signed certificate if I syspatch the server, the error message become : ca_validate_cert: /C=FR/ST=France/L=Paris/O=XXX unsupported or invalid name syntax If I restart from a 6.7 box, and generate my certificate, everything is OK but if I upgrade to 6.8, same behavior. Has anyone met the same behavior ? Thanks
