[strongSwan] IKEv2 and MacOS roadwarrior

korsar182 at gmail.com korsar182 at gmail.com
Tue Jan 14 16:27:06 CET 2020

How I can change leftid for strongswan? It always CN= no  
matter what I configure in ipsec.conf, even leftid=%any doesn't work.

swanctl -L:

IKEv2-tunnel: IKEv2, no reauthentication, no rekeying, dpd delay 30s
   remote: %any
   local public key authentication:
     id: CN=
     certs: CN=
   remote EAP_RADIUS authentication:
     eap_id: %any
   IKEv2-tunnel: TUNNEL, no rekeying, dpd action is clear
     remote: dynamic

Tobias Brunner <tobias at strongswan.org> писал(а) в своём письме Tue, 14 Jan  
2020 17:08:17 +0200:

> Hi,
>> When I'm trying to connect from MacOS 10.15 I get an error:
> Apparently, it's still not possible to use DNs as identities with Apple
> clients, see [1].
> Regards,
> Tobias
> [1]
> https://wiki.strongswan.org/projects/strongswan/wiki/AppleIKEv2Profile#Known-Issues

More information about the Users mailing list