L2TP with PEAP authentication from MacOS/iOS

Posted by Jose on Server Fault See other posts from Server Fault or by Jose
Published on 2012-08-30T02:01:14Z Indexed on 2012/08/30 3:39 UTC
Read the original article Hit count: 682

Filed under:
|
|
|

Following the recent security advisory, I'm reconfiguring our VPN servers and having trouble.

We're using Windows 2008 R2 server for VPN services, running RRAS and NPS on the same server and configure it to use PEAP-EAP-MSCHAPV2 authentiation for all tunnel type(PPTP, L2TP, IKEv2, SSTP), which previously allowed plain MSCHAPv2.

But Apple products, MacOS and iOS cannot connect to VPN after this change. I tried to install root certificate used in PEAP transaction but no change.

Does anyone know whether MacOS/iOS supports PEAP-EAP-MSCHAPv2 authentication in PPTP/L2TP? If so any tips to make it work? (I know PEAP-EAP-MSCHAPv2 is supported in WPA/WPA2 enterprise)

Regards.

© Server Fault or respective owner

Related posts about vpn

Related posts about macosx