[strongSwan] Different authentication methods

Fred curious_freddy at gmsl.co.uk
Mon Apr 11 12:08:46 CEST 2016

hi all,

These seem to be the industry norm for IKEv2:

Machine certificates (is this no EAP??),

Just wondering how the bottom two use cases differ?

What kind of scenario would better suit Machine Certificates over 
EAP-TLS with client certificates? Both seem to use certificates for auth 
of client, but am I right that one uses EAP and the other not?

Is one weaker than the other or are they comparable?

Thanks! Just hoping to choose the correct method and hoping to 
understand the real world differences between the two.


More information about the Users mailing list