IPSec Mobile GUI doesn't allow Hybrid + Xauth in 2.3.2-p1



  • Not sure if I'm missing something here. I'm trying to use Hybrid RSA + Xauth for Mobile IPSec P1. If I select Hybrid RSA + Xauth, the "Peer Certificate Authority" field is removed, as I would expect (it's not needed for Hybrid RSA + Xauth).

    But I can't save the config, it generates an error saying "The field Certificate Authority is required." I can't select a CA through the GUI so there's no way to satisfy this.

    I'm guessing this is just a GUI issue and I could probably edit the config file by hand, but in that case what should I use for authentication_method in the config file?



  • I had the same problem.

    After saving xauth rsa setup, manually change the xml to:

     <authentication_method>hybrid_rsa_server</authentication_method>
    
    

  • Rebel Alliance Developer Netgate

    Confirmed, just pushed a fix

    https://redmine.pfsense.org/issues/7258