[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

WORKING: isakmp + X509 PKI Setup Guide using PGP and tokens

To: "'tech@openbsd.org'" <tech@openbsd.org>
Subject: WORKING: isakmp + X509 PKI Setup Guide using PGP and tokens
From: Pepijn Vissers <vissers@fox-it.com>
Date: Mon, 8 Oct 2001 17:15:25 +0200

Hi,

Finally it works the way I want it to :) 

I wanted a PKI with users authorized by a CA, of which
you can block certain certificates using (part of) their DN
in isakmpd.policy. That finally works!

On top of that, we made it work with PGPNet and iKey2000 tokens.

A complete description of my steps is described in 
 
 http://www.fox-it.com/pdf/x509_isakmp_complete.pdf. (2 mb)

Thanks go out to Angelos and Philipp for their tips. 

Please feedback to the document if you want to!

Regards,
---
Pepijn Vissers				

Forensic IT Consultant			t  	  015 - 21 21 907
Fox-IT Forensic IT Experts B.V	f  	  015 - 21 21 964
Oude Delft 47				e    vissers@fox-it.com
2611 BC  Delft				i  	   www.fox-it.com
D41F 3C13   3591 A2E1    E642 75CE   9CFA 276F    DDE6 10D6

Prev by Date: OpenBsd and NAT
Next by Date: Re: OpenBsd and NAT
Prev by thread: Re: OpenBsd and NAT
Next by thread: rm hack
Index(es):
- Date
- Thread