Help

IKEv2 VPN for macOS

colton_mark
New Contributor

Posted on ‎02-17-2022 03:19 PM

Does anyone have any experience with configuring IKEv2 for macOS?  For our Windows devices we have a working infrastructure for MS AOVPN which uses the IKEv2 protocol.  I was hoping since IKEv2 was also an option in macOS that we would be able to use the same infrastructure.  I haven't been able to get it to work so far and still being relatively new to Macs I am not having a whole lot of luck in finding logs to troubleshoot.  If anyone has any experience with something similar I would be interested to hear any pointers.

0 Kudos
Reply
3 REPLIES 3

BWonderchild
New Contributor III

Posted on ‎02-17-2022 10:00 PM

IIRC iMazing Profile Editor allowed people to create configuration profiles leveraging IKEv2...... 

0 Kudos
Reply

bartlomiejsojka
Contributor

Posted on ‎02-21-2022 08:55 AM

You should be able to test everything with:

log stream --debug --predicate 'subsystem == "com.apple.networkextension"'

 Also, if you can’t make a Jamf–Pro–created profile to work, be sure to create (e.g. with iMazing, as suggested by @BWonderchild) and test the profile locally until it works, before going back to Jamf Pro. I’ve had a case where Jamf Pro ignored encryption algorithms in both AssociationParameters dicts no matter what — had to sign the profile before uploading 🙄.

0 Kudos
Reply

BWonderchild
New Contributor III
In response to bartlomiejsojka

Posted on ‎02-21-2022 10:07 AM

If I had a nickel for every time I had to manually sign profiles.....

0 Kudos
Reply