Text only | Text with Images

OPNsense Forum

English Forums => Virtual private networks => Topic started by: robertkwild on February 02, 2022, 07:02:53 PM

Title: VPN that requires no cert to install on windows 10 client
Post by: robertkwild on February 02, 2022, 07:02:53 PM
hi all,

in opnsense is there a vpn server that requires no cert to be installed natively on windows 10 client(s) ie so the client just logs in with a username and password

i did set up l2tp/ipsec but opnsense has since got rid of l2tp in the package list

thanks,
rob
Title: Re: VPN that requires no cert to install on windows 10 client
Post by: atom on February 02, 2022, 09:09:12 PM
I only know the old Shrew client ( only version 2.2.1 works with ike) . It runs with pre-shared keys, but this client also has to be installed first ....


https://www.shrew.net/download/vpn
(https://www.shrew.net/download/vpn)
Title: Re: VPN that requires no cert to install on windows 10 client
Post by: jgrande on February 03, 2022, 03:42:38 AM
If letsencrypt is an option for you, try IKEv2 + EAP MSCHAPv2.
Title: Re: VPN that requires no cert to install on windows 10 client
Post by: robertkwild on February 03, 2022, 12:18:10 PM
thanks

IKEv2 + EAP MSCHAPv2 requires a self signed cert CA to install on client/remote pc, thats ok if there admins but if there standard users they cant install it

im going to install lets encrypt package on opnsense hopefully client/remote pc will know about it, without me having to install
Text only | Text with Images