Two things solved the problem
as you mentioned there were some issues importing the key. I imported into local machine into the proper container but that didn't work, I had to import it into personal as well, then I was able to get to the next problem
next problem was authentication, I was PSK and EAP, not sure how I missed that.
Not the tunnel works, but having other issues with the 10.0.0.0/8 subnetting. If you can assist on that, that'd be great.
Network A (the pfsense box) has the following subnets
10.40.0.0/16
10.142.0.0/24
10.20.0.0/24
Network B (my client side) has the following subnets
172.16.0.0/16
10.205.0.0/16
When I set the mobile clients to 10.40.196.0/24 for a subnet the client side route the 10.0.0.0/8 via the tunnel which kills one of my local subnets on the network here from my workstation (since I have a 172.16.x.x address).
So logically I tried changing the mobile client to 192.168.168.0/24 and I can route on my side just fine but I have to manually add the routes to network A each time I connect as they aren't auto mapped.
Phase 2 on network A pfsense box does indeed had 3 entries with the proper subnets.
Anyway to auto map the route to the proper subnet?