[Openswan Users]

Paul Wouters paul at xelerance.com
Thu Jul 13 18:04:36 CEST 2006


On Thu, 13 Jul 2006, Matt Reeve wrote:

> I am trying to make a connection using the Microsoft client using L2TP and
> certificates but with a "Error 786: The L2TP connection attempt failed because
> there is no valid machine certificate on your computer for security
> authentication" every time. I installed the certificate using MMC taking great
> care to make sure it is on the computer account and not the user account. I
> tried 3 different W2K boxes with the same result. Using the same certificate
> on an XP SP2 machine, also installed with MMC in the same way works fine.
>
> Here is the openswan conf and log, I've highlighted the line which looks
> suspicious compared with the (working) log from my XP connection below. Note
> that the "unknown value" number changes each time I try to connect. I've also
> tried openswan versions 2.4.6rc1, 2.4.5 and 2.4.0 with the same result.

Perhaps some network settings between the two OSes are different? Can you
try setting the mtu of the ethernet interface of the ipsec/l2tp server
to 1472 and seeif you still have this problem? What does 'ipsec verify' say?

Paul


More information about the Users mailing list