OK thank you, tried leftsendcert=always but same problem. I have not installed the cert on the clients. Is that necessary? I use username/password authentication of the clients and the clients don’t care about the server certificate.
> On Mar 16, 2017, at 3:40 PM, Tobias Brunner <[email protected]> wrote: > > Hi Klaus, > >> What is missing to make it work? > > As documented on [1], try adding `leftsendcert=always`. If that doesn't > work, the CA certificate is probably not installed (or trusted) on the > clients. > > Regards, > Tobias > > [1] https://wiki.strongswan.org/projects/strongswan/wiki/AppleClients >
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
