Repository files navigation

Simple Certificate Manager for IPsec...

Dependencies: gtk2, polkit, openssl

When creating a connection viaNetwork Manager (e.g. IKEv2/IPsec), the connection settings must specify the corresponding certificates (e.g. Ca in case of public VPNs). Since theIPsec working directory is/etc/ipsec.d and certificates must be located in its subdirectories (see IPsec Documentation),NM does not have access privileges to this directory by default.

IPSecCaManager is designed to manageIPSec certificate files. In addition to convenient work in the GUI, it always recursively changes the rights to the working directory and files after startup and during current operations:

mkdir -p /etc/ipsec.d/{cacerts,certs,private}; chmod -R 755 /etc/ipsec.d

As a result, this makes it accessible toNM and there are no connection problems.

Below is a screenshot of an already configuredIKEv2/IPsec connection with a server certificate + user identification by name and password:

Let me remind you that to create anIKEv2/IPsec connection usingNetwork Manager in Mageia Linux, the following packages are required:

networkmanager-strongswan-gnome (or plasma-applet-nm-strongswan for KDE) networkmanager-strongswan strongswan-charon-nm strongswan libreswan (needed to create L2TP/IPsec)

The program can be launched either from the installed package or from the archive by runningStartAsRoot.

Note: I haven't found a more secure solution withIPSec certificates. Use as is... :)