VPN that requires no cert to install on windows 10 client

robertkwild · February 02, 2022, 07:02:53 PM

hi all,

in opnsense is there a vpn server that requires no cert to be installed natively on windows 10 client(s) ie so the client just logs in with a username and password

i did set up l2tp/ipsec but opnsense has since got rid of l2tp in the package list

thanks,
rob

atom · February 02, 2022, 09:09:12 PM

I only know the old Shrew client ( only version 2.2.1 works with ike) . It runs with pre-shared keys, but this client also has to be installed first ....

https://www.shrew.net/download/vpn

jgrande · February 03, 2022, 03:42:38 AM

If letsencrypt is an option for you, try IKEv2 + EAP MSCHAPv2.

robertkwild · February 03, 2022, 12:18:10 PM

thanks

IKEv2 + EAP MSCHAPv2 requires a self signed cert CA to install on client/remote pc, thats ok if there admins but if there standard users they cant install it

im going to install lets encrypt package on opnsense hopefully client/remote pc will know about it, without me having to install

VPN that requires no cert to install on windows 10 client

robertkwild

February 02, 2022, 07:02:53 PM

atom

February 02, 2022, 09:09:12 PM #1

jgrande

February 03, 2022, 03:42:38 AM #2

robertkwild

February 03, 2022, 12:18:10 PM #3