[strongSwan] constraint requires public key authentication, but EAP was used on strongswan android client

Tobias Brunner tobias at strongswan.org
Mon May 11 11:28:19 CEST 2015

Hi Tom,

The Android app currently doesn't support mutual EAP authentication.  So
it is always necessary to authenticate the server with pubkey
authentication first.  So instead of setting

>  leftauth=eap-ttls

configure `leftauth=pubkey` (or remove the option as that's the default).


More information about the Users mailing list