{"id":537,"date":"2026-02-21T09:57:55","date_gmt":"2026-02-21T07:57:55","guid":{"rendered":"https:\/\/vpn.univ-fcomte.fr\/?p=537"},"modified":"2026-02-21T09:57:55","modified_gmt":"2026-02-21T07:57:55","slug":"vpn-sur-fedora-avec-les-certificats-harica","status":"publish","type":"post","link":"https:\/\/vpn.univ-fcomte.fr\/?p=537","title":{"rendered":"VPN sur Fedora avec les certificats HARICA"},"content":{"rendered":"\n

Depuis Fedora 431<\/a><\/sup>, les certificats se trouvent dans le r\u00e9pertoire \/etc\/pki\/ca-trust\/source\/anchors\/<\/code>. Stronswan stock ses certificats dans \/etc\/strongswan\/ipsec.d\/cacerts\/<\/code>. Lors du lancement de la session VPN, les certificats HARICA ne sont pas trouv\u00e9s et le lancement de la connexion \u00e9choue.<\/p>\n\n\n\n

Pour permettre la connexion VPN, il suffit de copier les deux certificats CA HARICA-TLS-Root-2021-RSA.pem, et HARICA-GEANT-TLS-R1.pem dans \/etc\/strongswan\/ipsec.d\/cacerts\/<\/code> puis d’effectuer la commande systemctl restart NetworkManger.service<\/code>.<\/p>\n\n\n\n

La connexion VPN devrait \u00eatre fonctionnelle, sur ce point.<\/p>\n\n\n

  1. Merci \u00e0 G\u00e9rard Asensio de la DSIN pour avoir trouv\u00e9 la source du probl\u00e8me et la solution. \u21a9\ufe0e<\/a><\/li><\/ol>","protected":false},"excerpt":{"rendered":"

    Depuis Fedora 43, les certificats se trouvent dans le r\u00e9pertoire \/etc\/pki\/ca-trust\/source\/anchors\/. Stronswan stock ses certificats dans \/etc\/strongswan\/ipsec.d\/cacerts\/. Lors du lancement de la session VPN, les certificats HARICA ne sont pas trouv\u00e9s et le lancement de la connexion \u00e9choue. Pour permettre la connexion VPN, il suffit de copier les deux certificats CA HARICA-TLS-Root-2021-RSA.pem, et HARICA-GEANT-TLS-R1.pem dans […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"[{\"content\":\"Merci \u00e0 G\u00e9rard Asensio de la DSIN pour avoir trouv\u00e9 la source du probl\u00e8me et la solution.\",\"id\":\"5c72c49b-0264-4302-81a1-d3bc02c9bc1f\"}]"},"categories":[1,20],"tags":[42,46,200],"class_list":["post-537","post","type-post","status-publish","format-standard","hentry","category-informations-utilisateurs","category-problemes-utilisateurs","tag-certificat","tag-fedora","tag-harica"],"_links":{"self":[{"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=\/wp\/v2\/posts\/537","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=537"}],"version-history":[{"count":1,"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=\/wp\/v2\/posts\/537\/revisions"}],"predecessor-version":[{"id":538,"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=\/wp\/v2\/posts\/537\/revisions\/538"}],"wp:attachment":[{"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=537"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=537"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vpn.univ-fcomte.fr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=537"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}