Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec mobile with EAP-MSCHAPv2 and Active Directory

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 367 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mobydick426
      last edited by

      Hello,

      (Using pfSense 2.4.4 and Windows 10 Pro as client)

      We have configured a LDAP authentication on our pfSense for use with IPSec (LDAP test is ok).

      We have also configured a mobile IPSec with EAP-MSCHAPv2 using this guide :

      https://www.netgate.com/docs/pfsense/vpn/ipsec/configuring-an-ipsec-remote-access-mobile-vpn-using-ikev2-with-eap-mschapv2.html

      We can't understand an error receive during authentication :

      0_1539594410189_log.txt

      In this file, I've replaced my own IP with XX.XX.XX.XX and the VPN WAN IP with YY.YY.YY.YY. My login is replaced with USER-LOGIN and FQDN with VPN-FQDN.

      I'm not sure, but it seems that a request is send to my computer for a certificate named 'VPN-FQDN' - 'USER-LOGIN'. I've imported the certificate for 'VPN-FQDN'. Why pfSense is adding " - 'USER-LOGIN'" ?

      Or perhaps I've misunderstanded the error log.

      Thanks for your help !

      Regards,

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.