Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Dummy XAuth Authentication (xauth-noauth plugin)

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 602 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      twx
      last edited by

      As of strongSwan version 5.0.3, there is a plugin available which enables dummy XAuth authentications: xauth-noauth

      A quote from the strongSwan release notes:

      For IKEv1 client implementations that can't be configured without XAuth (e.g. Apple iOS) the new xauth-noauth plugin provides a means to use basic RSA or PSK authentication. The plugin simply concludes the XAuth exchange successfully without actually performing any authentication. Therefore, to use this backend it has to be selected explicitly with rightauth2=xauth-noauth.

      Is it possible to enable this plugin in pfSense? And, if not, will it be available in a future release?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.