Page MenuHomeVyOS Platform

IPSec remote access VPN: ability to set EAP ID of clients
Closed, ResolvedPublicFEATURE REQUEST

Description

It would be nice to be able to define the acceptable EAP identity for remote-access clients:

set vpn ipsec remote-access connection example-conn authentication eap-id EXAMPLE.EAP.ID

Setting the EAP ID would need to update the connection entry in swanctl.conf to replace the default %any with the specified ID

remote {
    auth = eap-tls
    eap_id = %any
}

remote {
    auth = eap-tls
    eap_id = "EXAMPLE.EAP.ID"
}

Details

Version
-
Is it a breaking change?
Perfectly compatible

Event Timeline

Viacheslav triaged this task as Wishlist priority.Apr 17 2024, 8:37 AM

Tested as working in: VyOS 1.5-rolling-202404230019

dmbaturin changed Issue type from Feature (new functionality) to improvement.