Change config to accept connection with username + password (with psk)
I have read and configure strongswan with this article
On client, This one works with username + password + certificate.
I need to change configuration so server can accept client connection with just username + password (with or without psk)
I know this is silly question for experts but I am not a server expert. I own a IOS client lib which works on Ikev2 with username + password (with or without psk).
So I am trying to setup server for same.
My ipsec.conf and ipsec.secrets is identical as mentioned in article. It would be helpful if someone can suggest changes from current state of config.
#3 Updated by Tobias Brunner 8 months ago
Thanks for reply, but can't it work without certificate at all. I am exploring option where client can just send username + password.
The client doesn't require a certificate. The server does. The client only has to install a certificate if the server certificate is issued by a certificate authority (CA) the client doesn't know/trust yet.