Currently we support several variants of EAP for ipsec remote access client authentication, but we should also support standard ipsec mutual x509 authentication. This is authentication mode "pubkey" in the strongswan config and functions in practice similarly to EAP-TLS, just without the extra EAP exchange.
Description
Description
Details
Details
- Difficulty level
- Unknown (require assessment)
- Version
- -
- Why the issue appeared?
- Will be filled on close
- Is it a breaking change?
- Unspecified (possibly destroys the router)
- Issue type
- Unspecified (please specify)