Re: 5.8 IKEv2 with OSX 10.11.3

DY - First things first. Can you please post a printout of the certificate in text and PEM format? Clearly the OS X machine doesn't like the subjectAltName, but there may be other issues as well. --Paul > On Jan 31, 2016, at 1:16 AM, Dot Yet wrote: > > Forgot to mention

Re: 5.8 IKEv2 with OSX 10.11.3

Forgot to mention that I know the problem is here: ca_x509_subjectaltname: FQDN/server.obsd57.com ca_x509_subjectaltname_cmp: FQDN/server.obsd57.com mismatched ca_validate_cert: /C=CA/ST=Ontario/L=Toronto/O=stark/OU=ITOPS/CN=client-number-1/emailAddress= ad...@obsd57.com invalid subjectAltName

5.8 IKEv2 with OSX 10.11.3

Hello, I am trying to setup IKEv2 roadwarrior based VPN. I've the client functional in Windows 7 using the native client. I am trying to get the same functional on OSX, but facing problems. The authentication is being done using certificates. I used ikectl to generate, CA, server's certificate