[Openswan Users] RSA and RSA with XAUTH at the same machine?
Paul Wouters
paul at xelerance.com
Sun Dec 14 16:40:28 EST 2008
On Sat, 13 Dec 2008, harald.meyer7 at freenet.de wrote:
> I'm using Openswan 2.4.6 at a Debian machine as a "VPN concentrator" successfully with some road warriors with certificate authentication in Main Mode. (No policy groups.)
>
> Now I want to add a Cisco alike client with certificate and XAUTH (iPhone).
>
> For XAUTH I've to insert "leftxauthserver=yes" to my "conn %default" because it'll be ignored if it's placed in my "conn iPhone" (one of several conn descriptions).
Why do you think it is ignored?
Putting it in the default section is wrong, as you found out.
Did you also put in rightxauthclient=yes?
Paul
More information about the Users
mailing list