[strongSwan] WG: unable to connect via Ubuntu 12.04 / strongswan-nm / eap-radius
Martin.Shemon at parship.com
Thu May 15 09:14:04 CEST 2014
sure, it looks like that i am not the only one with this problem… found a lot of stuff in other postings but no proper solution.
(other people used certificates) but I want to use my radius server for authentication without certificates.
Lets see if we find a solution, i´ll post the results and configs here then.
Von: Ian McDonald [mailto:iam at st-andrews.ac.uk]
Gesendet: Mittwoch, 14. Mai 2014 19:37
An: Martin Shemon
Betreff: RE: [strongSwan] unable to connect via Ubuntu 12.04 / strongswan-nm / eap-radius
If you get this working, would love a copy of your configs with sensitive bits redacted, and if it's not too much trouble how the client side is setup.
Sent from my phone, please excuse brevity and misspelling.
From: Martin Shemon<mailto:Martin.Shemon at parship.com>
Sent: 14/05/2014 18:13
To: users at lists.strongswan.org<mailto:users at lists.strongswan.org>
Subject: [strongSwan] unable to connect via Ubuntu 12.04 / strongswan-nm / eap-radius
after testing the whole day around there is still no working solution for me.
What we have here:
1 Strongswan Server with IKEv2
1 FreeRadius Server
1 DHCP Server
1 Active Directory Server which is behind the RADIUS Server
Authentication via eap-radius and one type of connection which is working for the most clients.
Goal is to connect and authenticate all clients with the same connectionconfiguration
Windows 7 x64
MacOS X 10.9
Not working Clients:
Ubuntu 10.04 / 12.04
One question: has anybody such a configuration running ? Problem is that the Ubuntu Clients (with strongswan-nm plugin) do not cconnect cause the phase 2 (EAP-radius) is not working like the windows connection. For me it looks like the eap-tls tunnel is not coming up cause of a not accepted certificate. The certificates work fine on all the other clients.
# ipsec.conf - strongSwan IPsec configuration file
leftid= [hiddenCauseOfPrivacy].net --> DNS Name
What can we do to analyze this problem in deep.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users