IPSec mobile with EAP-MSCHAPv2 and Active Directory
-
Hello,
(Using pfSense 2.4.4 and Windows 10 Pro as client)
We have configured a LDAP authentication on our pfSense for use with IPSec (LDAP test is ok).
We have also configured a mobile IPSec with EAP-MSCHAPv2 using this guide :
https://www.netgate.com/docs/pfsense/vpn/ipsec/configuring-an-ipsec-remote-access-mobile-vpn-using-ikev2-with-eap-mschapv2.html
We can't understand an error receive during authentication :
In this file, I've replaced my own IP with XX.XX.XX.XX and the VPN WAN IP with YY.YY.YY.YY. My login is replaced with USER-LOGIN and FQDN with VPN-FQDN.
I'm not sure, but it seems that a request is send to my computer for a certificate named 'VPN-FQDN' - 'USER-LOGIN'. I've imported the certificate for 'VPN-FQDN'. Why pfSense is adding " - 'USER-LOGIN'" ?
Or perhaps I've misunderstanded the error log.
Thanks for your help !
Regards,