Hi, Can anybody help me to configure radius accounting? I’d like to use radius to authenticate users defined in certificate CN=XXX value.
I had the following working config which nevertheless prompts for username and
password on the device (iPhone):
conn ios
keyexchange=ikev1
authby=xauthrsasig
xauth=server
leftcert=server_cert.pem
left=10.30.10.213
leftsubnet=0.0.0.0/0
right=%any
rightsourceip=10.30.11.120/29
rightdns=208.67.220.220
auto=add
type=tunnel
rekey=no
What can I do to use the CN value from certificate for radius account instead
being prompted for the username and pwd?
I have triad many combinations suggested on the eap-radius web page but it
always failed like this:
14[CFG] looking for XAuthInitRSA peer configs matching
10.30.10.213...10.30.10.121[00=AdaptiveMobile, CN=iphone-miro"]
14[IKE] no peer config found
Thanks,
Miro
signature.asc
Description: Message signed with OpenPGP using GPGMail
*****************************************This email and any files transmitted with are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error then please delete it and notify the sender. Do not make a copy or forward it to anyone. This footnote also confirms that this email message has been swept for the presence of computer viruses. Adaptive Mobile Security Ltd, Ferry House, 48 Lower Mount Street, Dublin 2, Ireland Directors: B. Collins, G. Maclachlan (UK), N. Grierson (UK), J. Ennis (UK), D. Summers (UK). Registered in Ireland, Company No. 370343, VAT Reg.No.IE6390343O*****************************************
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
