strongSwan KVM Tests / ikev2 / rw-eap-sim-id-radius
Test ikev2/rw-eap-sim-id-radius
Description
The roadwarrior carol sets up a connection to gateway moon. At the outset the gateway authenticates itself to the client by sending an IKEv2 RSA signature accompanied by a certificate. carol then uses the Extensible Authentication Protocol in association with a GSM Subscriber Identity Module (EAP-SIM) to authenticate against the gateway moon. In this scenario triplets from the file /etc/ipsec.d/triplets.dat are used instead of a physical SIM card on the client carol and the gateway forwards all EAP messages to the RADIUS server alice which also uses static triplets. In addition to her IKEv2 identity carol@strongswan.org, roadwarrior carol uses the EAP identity 228060123456001.