Hi Sam, > I need an EAP-SIM based authentication with the radius server. For this > I compiled the strongswan library with --enable-eap-sim, > --enable-eap-sim-file and --enable-eap-radius options on both the > Android device and the gateway machine.
If you delegate EAP-SIM authentication to RADIUS, you won't need the eap-sim plugins on the server. Further, a client never needs the eap-radius plugin; it does not directly speak RADIUS. > 00[CFG] loaded 0 RADIUS server configurations Seems that the plugin can't find your RADIUS configuration in strongswan.conf. > load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random x509 revocation hmac > xcbc stroke kernel-netlink socket-raw fips-prf eap-radius eap-sim > eap-sim-file updown You should not explicitly define a load statement. ./configure your installation with what you need, and let the daemon handle plugin order and the plugin list. > Below is the content of my *strongswan.conf* file: At a first look your gateway strongswan.conf is fine. Please double check that you are editing the same file as the daemon reads (your --sysconfdir= matches your strongswan.conf path), and access rights are ok. Given that your explicit load statement does not throw a warning, I'd guess that the daemon does not read from the correct file. Regards Martin _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users