So for the record, I do think we should add to RFC 5996, at the end of
the paragraph that starts with "An implementation using EAP MUST also
use a public-key-based" something like:
As an exception to this rule, public key authentication of the server is
not required when using the extension defined in [RFC5998].
Thanks,
Yaron
On 09/22/2014 02:59 PM, Tero Kivinen wrote:
As there has not been any support in the list to add anything like
this to the draft-kivinen-ikev2-rfc5996bis, I assume we do not then
need to change it.
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
