[strongSwan] xAuth request for VICI

Martin Willi martin at strongswan.org
Thu Feb 26 10:26:01 CET 2015


Sam,

> test:   remote: uses XAuth authentication: any
> test:   remote: [C=US, O=xxxxxx, CN=test] uses public key authentication

The order of remote authentication rounds is wrong; XAuth follows public
key, not vice-versa.

As your config tree looks correct, most likely the order of
authentication rounds gets swapped. The order must be preserved in your
dictionary to make that work.

Are you using the Python library? I think ruby gets this right, as it is
guaranteed that "Hashes enumerate their values in the order that the
corresponding keys were inserted.". Probably not true for Python.

Regards
Martin



More information about the Users mailing list