[Fed-Talk] OS X, L2TP/IPsec, and Cisco VPN3000s
[Fed-Talk] OS X, L2TP/IPsec, and Cisco VPN3000s
- Subject: [Fed-Talk] OS X, L2TP/IPsec, and Cisco VPN3000s
- From: Timothy J Miller <email@hidden>
- Date: Wed, 1 Feb 2006 08:23:19 -0600
Has anyone had any success getting OS X 10.4.x L2TP/IPsec to
negotiate an SA with a Cisco VPN3000 concentrator with certificate
authenticated IPsec? I've gotten to the point where main mode is
complete (as far as the concentrator is concerned), but OS X
terminates the nascent SA because (it says) the certificate identity
is invalid.
As far as I can tell, the only IPsec certificate profile requirements
OS X is supposed to have to IPsec peer certificates is the FQDN in
the subjectAlternativeName. Which I have. But for the life of me I
can't get it to work.
Pointers?
-- Tim Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden