Synopsis: VPN FAQ MSCHAP maybe remove line with client1.domain
Category: documentation
Description:
In the FAQ's Virtual Private Network section, Using MSCHAP-V2
for EAP Authentication, the FAQ says client1.domain should be in
the User identity field in the strongSwan client configuration. It
might not hurt to have that line, but I think perhaps that
client1.domain only applies to the next section, Using X.509
Certificate Authentication.
I want to thank the FAQ writers and all the developers, especially
those who work on IPSEC and Wireguard. The FAQ makes it so incredibly
easy to set up a VPN, even with Android clients! I am really amazed by
how easy it now is. THANKS!!
How-To-Repeat:
https://www.openbsd.org/faq/faq17.html#clientandroid
Fix:
diff -uNp a/source.html b/source.html
--- a/source.html Tue Oct 26 10:59:37 2021
+++ b/source.html Tue Oct 26 10:42:06 2021
@@ -401,7 +401,6 @@ In the strongSwan client, a new profile is configured
<li>the login/password values set in the responder config
<li>the newly imported <code>CN=VPN CA</code> certificate for the
<i>CA certificate</i> field
- <li><code>client1.domain</code> for the <i>User identity</i> field
<li><code>server1.domain</code> in the <i>Server identity</i> field
(under 'advanced settings')
</ul>
