diff options
-rw-r--r-- | sbin/isakmpd/isakmpd.8 | 16 |
1 files changed, 15 insertions, 1 deletions
diff --git a/sbin/isakmpd/isakmpd.8 b/sbin/isakmpd/isakmpd.8 index ec8eb52d96d..16c39aa5ead 100644 --- a/sbin/isakmpd/isakmpd.8 +++ b/sbin/isakmpd/isakmpd.8 @@ -1,4 +1,4 @@ -.\" $OpenBSD: isakmpd.8,v 1.81 2005/06/04 17:22:42 hshoexer Exp $ +.\" $OpenBSD: isakmpd.8,v 1.82 2005/08/23 15:02:31 jmc Exp $ .\" $EOM: isakmpd.8,v 1.23 2000/05/02 00:30:23 niklas Exp $ .\" .\" Copyright (c) 1998, 1999, 2000, 2001 Niklas Hallqvist. @@ -481,6 +481,20 @@ See .Sx KEYNOTE AUTHENTICATION below. .El +.Pp +When configuring +.Nm +for key- and certificate-based authentication, +the +.Dq Transforms +tag in +.Xr isakmpd.conf 5 +should include +.Dq RSA_SIG . +For example, the transform +.Dq 3DES-SHA-RSA_SIG +means: +3DES encryption, SHA hash, authentication using RSA signatures. .Sh PUBLIC KEY AUTHENTICATION It is possible to store trusted public keys to make them directly usable by |