Hi,
I'm having trouble grasping the whole pre-connect thing.
I have a 3400 Aruba controller (version 6.2) and VIA client software version 2.1.1.1.36296.
To get VIA to work I have enabled NAT for port 4500 and 443 and I am able to succesfully connect using IKEv1 and RADIUS.
Right now I would like to enable IKEv2 so that VIA sets up a VPN using the computer (for domain users to log on at ctrl+alt+del).
The thing I don't quite understand is that you need to use user certificates, which are placed in the computer store of the client?
How should I create these user certificates? Right now I created a computer certificate using our root CA but the computer fails to setup a VPN at ctrl+alt+del screen. When I try to connect with the VIA client it asks for the certificate (there is only one), but then generates a ERR -11400: Failed to establish secure session. How should I proceed?
I have the feeling I'm missing some information on how to get this to work, I seem to be missing information in the manual and AppNote on how to configure the certificates.
Attached a part of the (sanitized) config.
Thanks in advance,
Alex
#3400