> I was hoping there would be a way to authenticate *any* peer > that is signed by the CA. Unfortunately, it seems like setting > rightid=%any still results in "no matching peer config found".
That should actually work, just make sure to not set any rightcert, as each client has its own. Most likely you get "no matching peer config found" for other reasons, your config and a log excerpt could help to see what's going wrong. Regards Martin _______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
