Skip to main content
Solved

MacOS native VPN client problems with IPsec

  • December 4, 2021
  • 3 replies
  • 96 views
M
Forum|alt.badge.img+7

Has anyone gotten the native MacOS VPN client to work with IPsec using a Configuration Profile?

 

I am trying to get it to work with our Fortigate firewall but it keeps complaining that the server is not responding but I can successfully connect to it using a Windows machine. On the server (Fortigate) side, I am seeing the error message that Phase 1 negotiation has failed (Peer SA proposal does not match local policy). I can't find any other fields that I could edit to change the algorithms and the DHgroup as advised.

 

Should I just go with using a Profile that contains a script to do this?

Best answer by myu

Turns out we had to populate the Group to make it work.

    3 replies

    AJPinto
    Forum|alt.badge.img+26
    • AJPinto
    • Legendary Contributor
    • December 6, 2021

    You are probably filtering or inspecting something Apple related. You probably want to get with your firewall people and make sure everything apple related is being bypassed. On appleseed in downloads there is a something called Mac Evaluation Utility, give that a run and review the information it gives you. 

    M
    Forum|alt.badge.img+7
    • myu
    • Author
    • Contributor
    • December 8, 2021

    Thanks AJ.

    M
    Forum|alt.badge.img+7
    • myu
    • Author
    • Contributor
    • Answer
    • December 10, 2021

    Turns out we had to populate the Group to make it work.

    Terms & ConditionsCookie settingsAccessibility statement