MacOS native VPN client problems with IPsec

myu
New Contributor III

Has anyone gotten the native MacOS VPN client to work with IPsec using a Configuration Profile?

 

I am trying to get it to work with our Fortigate firewall but it keeps complaining that the server is not responding but I can successfully connect to it using a Windows machine. On the server (Fortigate) side, I am seeing the error message that Phase 1 negotiation has failed (Peer SA proposal does not match local policy). I can't find any other fields that I could edit to change the algorithms and the DHgroup as advised.

 

Should I just go with using a Profile that contains a script to do this?

1 ACCEPTED SOLUTION

myu
New Contributor III

Turns out we had to populate the Group to make it work.

View solution in original post

3 REPLIES 3

AJPinto
Valued Contributor II

You are probably filtering or inspecting something Apple related. You probably want to get with your firewall people and make sure everything apple related is being bypassed. On appleseed in downloads there is a something called Mac Evaluation Utility, give that a run and review the information it gives you. 

myu
New Contributor III

Thanks AJ.

myu
New Contributor III

Turns out we had to populate the Group to make it work.