Override IP address as default client identity on Windows IKEv2 VPN client.

  • Thread starter Thread starter Cody Hartman
  • Start date Start date
C

Cody Hartman

Guest
I am trying to manually set the client IKEv2 identity for the native Windows VPN client. The headend in this case in Cisco's FlexVPN Server, and there are specific policies that need to be applied per-user. The normal way to do this is to discriminate amongst connections using the IKE identities presented by each client. On most VPN clients, there is a way to set this value manually (e.g. to a string representing the client's FQDN). Looking at debug logs on the headend, the IKEv2 identity for the Windows client defaults to the IP address of the interface associated with the underlay connection

Continue reading...
 
Back
Top