mirror of
https://github.com/trailofbits/algo.git
synced 2025-06-06 15:13:56 +02:00
Ask users to enter the p12 password manually (#697)
This commit is contained in:
parent
6b803e069f
commit
ee7264f26e
2 changed files with 1 additions and 3 deletions
|
@ -1,6 +1,6 @@
|
||||||
|
|
||||||
function AddAlgoVPN {
|
function AddAlgoVPN {
|
||||||
certutil -f -p {{ easyrsa_p12_export_password }} -importpfx .\{{ item }}.p12
|
certutil -f -importpfx .\{{ item }}.p12
|
||||||
Add-VpnConnection -name "Algo VPN {{ IP_subject_alt_name }} IKEv2" -ServerAddress "{{ IP_subject_alt_name }}" -TunnelType IKEv2 -AuthenticationMethod MachineCertificate -EncryptionLevel Required
|
Add-VpnConnection -name "Algo VPN {{ IP_subject_alt_name }} IKEv2" -ServerAddress "{{ IP_subject_alt_name }}" -TunnelType IKEv2 -AuthenticationMethod MachineCertificate -EncryptionLevel Required
|
||||||
Set-VpnConnectionIPsecConfiguration -ConnectionName "Algo VPN {{ IP_subject_alt_name }} IKEv2" -AuthenticationTransformConstants GCMAES128 -CipherTransformConstants GCMAES128 -EncryptionMethod AES128 -IntegrityCheckMethod SHA384 -DHGroup ECP256 -PfsGroup ECP256 -Force
|
Set-VpnConnectionIPsecConfiguration -ConnectionName "Algo VPN {{ IP_subject_alt_name }} IKEv2" -AuthenticationTransformConstants GCMAES128 -CipherTransformConstants GCMAES128 -EncryptionMethod AES128 -IntegrityCheckMethod SHA384 -DHGroup ECP256 -PfsGroup ECP256 -Force
|
||||||
}
|
}
|
||||||
|
|
|
@ -146,8 +146,6 @@
|
||||||
<string>IKEv2</string>
|
<string>IKEv2</string>
|
||||||
</dict>
|
</dict>
|
||||||
<dict>
|
<dict>
|
||||||
<key>Password</key>
|
|
||||||
<string>{{ easyrsa_p12_export_password }}</string>
|
|
||||||
<key>PayloadCertificateFileName</key>
|
<key>PayloadCertificateFileName</key>
|
||||||
<string>{{ item.0 }}.p12</string>
|
<string>{{ item.0 }}.p12</string>
|
||||||
<key>PayloadContent</key>
|
<key>PayloadContent</key>
|
||||||
|
|
Loading…
Add table
Reference in a new issue