Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
755
Views
0
Helpful
0
Replies

Cisco ASA IPSEC IKEv1 PSK XAUTH -remote access won´t work with Apple devices

Jari Myllymaki
Level 1
Level 1

‎05-07-2015 02:26 AM

Hi!

 

I am trying figure out some cryptic remote access problem. I have Cisco ASA 5510 firewall and I have trying setup IPSEC IKEv1 remote access for mobile devices android and apple. Everything should be okay with configuration because I can open VPN connection with Android (Samsung Galaxy S5 mini). With Android user is authenticated suffessfully via AAA server (LDAP) and I give Phase1 completed and Phase2 completed log messages.

But when I am try connect Apple IPAD2 (iOS version 8.3) with Apple´s own VPN client with IPSEC IKEv1 xauth setup, IPAD says only connecting..

failed. When I debug this connection, there is no Phase1 completed and Phase2 completed log messages so it seems that Phase1 is not completed. But I have got log message AAA user authentication Succesful: server = 10.x.x.x : user = xxxx

But there is one log message what I am wondering:

713130 

Error Message    %PIX|ASA-5-713130: Received unsupported transaction mode attribute: 
attribute id

Explanation    This message indicates that the device received a request for a valid transaction mode attribute (XAUTH or Mode Cfg) that is currently not supported. This is generally a benign condition.

Recommended Action    None required.

 

Note: I have checked configuration, preshared key, username, password etc.. for many times

How can I make it work with Apple devices? Does Apple support IPSEC PSK XAUTH at all?

 

Regards. Jari Myllymäki

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents