Dummy XAuth Authentication (xauth-noauth plugin)



  • As of strongSwan version 5.0.3, there is a plugin available which enables dummy XAuth authentications: xauth-noauth

    A quote from the strongSwan release notes:

    For IKEv1 client implementations that can't be configured without XAuth (e.g. Apple iOS) the new xauth-noauth plugin provides a means to use basic RSA or PSK authentication. The plugin simply concludes the XAuth exchange successfully without actually performing any authentication. Therefore, to use this backend it has to be selected explicitly with rightauth2=xauth-noauth.

    Is it possible to enable this plugin in pfSense? And, if not, will it be available in a future release?


Log in to reply