I wondered whether you had any example workflows for creating a Configuration Profile suitable for a IKEv2 VPN using machine-based authentication?
We have the option of using the Strongswan VPN standalone connection app but we would much rather use the facility built into OS X/macOS if at all possible.
We already have a Configuration Profile for our 802.1X University wireless network which includes an AD certificate request and also both our Root and Intermediate certificates, so it would be good to use the existing certificate stored in the System Keychain if at all possible, rather than request yet another certificate from AD-CS?
Any advice or pointers would be greatly appreciated!
@glopez We reached out to Apple and they suggested to crate the VPN configuration profile using Apple Configurator. We were able to create it successfully and when install the profile it works as expected.(We are using AD Domain Credentials to authenticate)
However when we try to upload the same configuration profile on Jamf & deploy it switches to either shared secret or certificate based authentication & that do not works in our environment.
Opened a support case with Jamf and waiting to hear back from them.
@surajitbpn could you provide any insight or resources you used to create the profile in Configurator? I am trying to figure out this solve right now. Our Windows team is swamped and doesn't have the time to figure out how to get this configuration working and I am a bit out of my element here but happy to learn through trial and error. Thanks in advance for any insight you can provide!