Which VPN Authentification?
-
Hello Together
I looking which Authentication Methods i should use for an IPsec VPN Connection.
Is there a Option for PEAP-TLS or PEAP-MSCHAPV2?
I'm a little bit confused because of this: https://doc.pfsense.org/index.php/Using_EAP_and_PEAP_with_FreeRADIUS
This must be only for WLAN?For me it looks like EAP-RADIUS is only possible with: EAP-MSCHAPV2 and EAP-TLS
What (else) is possible? Sorry i'm try to find the perspective.
Hope for a plausible Answer.
Many Thanks
Best Regards
Alitai -
Hello
I'm a step further.
Config done and works (Android and IOS):
https://doc.pfsense.org/index.php/IKEv2_with_EAP-TLSIs it now possible to use a Freeradius Server with this config or does it only work with Mschapv2?
And the other Question i have: Is PEAP Supported for a VPN Connection in pfsense? It looks it's not.
Many Thanks
Regards
Alitai -
Those things are not mutually exclusive. See: https://doc.pfsense.org/index.php/IKEv2_with_EAP-RADIUS
Steve
-
Thanks for your Answer. :)
I don't understand it 100% but i found this:
https://doc.pfsense.org/index.php/Mobile_VPN_Client_AvailabilityIt shows that my Configuration only works without Radius.
Hope this is still up to date…Anyways, i'm happy that it works.
Thanks
Regards
Alitai -
Hello
Got it to work. :)
EAP-Radius means that the VPN Server will send the Authentification to the FreeRadius Server (That was not clear for me).
So i can use now EAP-TLS and EAP-MSCHAPV2 with Freeradius at the same Time.
Thanks
Regards
Alitai
