687
edits
Changes
→Create VPN CA and client certificates
== Configure iked ==
=== Create VPN the CA and the client certificates ===
ikectl ca VPN create
=== iked.conf ===
vi /etc/iked.conf
=== Apple ===
You need [https://itunes.apple.com/us/app/apple-configurator-2/id1037126344?mt=12 Apple Configurator 2] to create a MDM profile. Use the hostname of the server for both "server address" and "remote ID". "Local ID" can should be blankthe FQDN you used when creating the client certificate. Use authentication setting "none", Load the exported certificates (both the CA and fill the "shared secret"client certificate) in the MDM profile.
== References ==
