[strongSwan] "no trusted RSA public key found" with iOS ikev2
sacho.polo at gmail.com
Wed Nov 18 04:25:07 CET 2015
I am trying to make a connection from an iPad using ikev2 and am getting an
error "no trusted RSA public key found for '1-ios-test1-ikev2' when
strongswan tries to authenticate the cert. I cannot figure why I get this
error. The same works with Ikev1. Can someone please help?
I have followed the instructions here-
My connection definition in strongswan is
The client and server cert are from the same root CA. the root CA is copied
to /etc/ipsec.d/cacerts directory, the private key for the server cert is
mentioned in the secrets file. The client cert and key are NOT copied to
the VPN gateway. But the client cert is signed by the root CA on the VPN
The client cert installed on the ipad has the followign subject
and Subject Alt name
X509v3 Subject Alternative Name:
The profile installed on the phone has the following
<key>ExtendedAuthEnabled</key> <integer>0</integer> </dict>
<key>VPNType</key> <string>IKEv2</string> <key>PayloadType</key>
What am I missing? Any help will be greatly appreciated.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users