Multiple certification authorities?

Hi to all,
I have this problem:
in /etc/ipsec.d/cacerts I have more than one certification authority
(several .pem files).
How can I determine whether they are used by any ipsec connection? I
see neither .pem nor %cert references within the ipsec.conf, is this
enough to determine the above?
I also found .pem and .key files in ipsec.d/private and ipsec.d/certs,
not used in ipsec.conf.
I don't know anything about these files since that server wasn't
managed by me.
Could I remove all these files of all the three directories above
(since I have to create new CA and new certs for a remote windows xp
client to connect, a roadwarrior)?
However there are other ipsec connections in ipsec.conf and they are
active and working (they don't use certificates and I must not remove
them).

Thanks in advance.

On 22 Ott, 13:19, toh...@yahoo.com wrote:
> Hi to all,
> I have this problem:
> in /etc/ipsec.d/cacerts I have more than one certification authority
> (several .pem files).
> How can I determine whether they are used by any ipsec connection? I
> see neither .pem nor %cert references within the ipsec.conf, is this
> enough to determine the above?
> I also found .pem and .key files in ipsec.d/private and ipsec.d/certs,
> not used in ipsec.conf.
> I don't know anything about these files since that server wasn't
> managed by me.
> Could I remove all these files of all the three directories above
> (since I have to create new CA and new certs for a remote windows xp
> client to connect, a roadwarrior)?
> However there are other ipsec connections in ipsec.conf and they are
> active and working (they don't use certificates and I must not remove
> them).
>
> Thanks in advance.

No suggestions?