Hi ASL friends,
some of you use a VPN Site-to-Site with X509 certs and ASL v7 to ASL v6?
My Problem is that an generated X509 cert on an ASL v7, cannot use in an ASL v6, because the passphrase is unknown. The import works, but you cannot set the on v7 generated cert to local cert on ASL v6.
In the past ASL v6 you has entered 2 passwords, one for the export/import, one for the cert. In the new ASL v7, you only entered the export/import passphrase.
Also the VPN-Settings with backup cannot import.
My solution:
Generate a signing CA on the v6, also an Host cert on this. Issue it with the CA and import this to the v7. Use this as local cert and for the vpn-gateway settings.
Thats not fine, but it works for me
Astaro, some clean solution planed?
This thread was automatically locked due to age.