Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Is "Mutual RSA" to be considered safe?

    Scheduled Pinned Locked Moved IPsec
    4 Posts 2 Posters 443 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      Macormick
      last edited by

      Hello,

      Is "Mutual RSA" to be considered safe?

      I have a Microsoft PKI with offline root approx and issuing approx. These are imported into pfSense.

      My Windows 10 computers have a machine certificate issued from issuing approx.

      I have configured an IKEv2 tunnel with machine certificate authentication against pfSense IPSec mobile connection.

      In pfSense i have the "authentication method" set to "Mutual RSA" and the peer identifier set to "Any"

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        Mutual RSA is safe, and is more secure than PSK.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        M 1 Reply Last reply Reply Quote 1
        • M
          Macormick
          last edited by

          I can now see that "approx" should be "ca" :)

          1 Reply Last reply Reply Quote 0
          • M
            Macormick @jimp
            last edited by

            @jimp Thank you!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.