Bug #13878: IPsec Profile Wizard/Apple: Generated profile does not contain the correct ``AuthenticationMethod`` for IKEv2 EAP configurations - pfSense Packages - pfSense bugtracker

Actions

Copy link

Bug #13878

closed

IPsec Profile Wizard/Apple: Generated profile does not contain the correct ``AuthenticationMethod`` for IKEv2 EAP configurations

Added by Jim Pingle over 1 year ago. Updated 12 months ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

IPsec Profile Wizard

Target version:

Start date:

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Affected Version:

Affected Plus Version:

Affected Architecture:

Description

When importing a profile for EAP-MSCHAPv2 for example, the AuthenticationMethod is set to Certificate when it should be None. We set ExtendedAuthEnabled properly.

As a result the imported profile defaults to trying cert auth until the user edits the connection and adds their username/password.

I'm not sure if this is a recent change or what, I seem to recall it working OK in the past. The reference doc from Apple isn't too clear on some aspects here, so it probably needs testing of each type (e.g. non-EAP, EAP user auth, EAP TLS) to ensure they all behave as expected.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Packages

Custom queries

Bug #13878

IPsec Profile Wizard/Apple: Generated profile does not contain the correct ``AuthenticationMethod`` for IKEv2 EAP configurations

Updated by Jim Pingle about 1 year ago

Updated by Jim Pingle about 1 year ago

Updated by Jim Pingle about 1 year ago

Updated by Danilo Zrenjanin 12 months ago

Updated by Danilo Zrenjanin 12 months ago