GFI Software

Welcome to the GFI Software community forum! For support please open a ticket from

Home » GFI User Forums » Kerio Control » problem: IPsec vpn with ssl cert on iphone (problem: IPsec vpn with ssl cert on iphone)
icon4.gif  problem: IPsec vpn with ssl cert on iphone [message #103659] Mon, 10 June 2013 11:21 Go to next message
nimz is currently offline  nimz
Messages: 1
Registered: June 2013

Hello guys,

I run kerio control 8.0.0

and want to try to create an ipsec tunnel.

here is what I did,

on kerio server:
create valid certificate and make it primary for kerio,
turn on the vpn server in interface menu and checked "enable ipsec vpn server" then choose the certificate name from drop down menu
also checked enable MS-CHAP v2 authentication
and at the end create a role on the traffic policy which permit every ports about ipsec vpn from any sources to firewall.

on the iPhone:
install the certificate as a profile which export from the kerio ssl certificates
create new IPSec vpn connection, with these information,
address "kerio ip add", username and password " which create on the kerio with permission of vpn connections
assign the certificate which installed before

but at the end when I trying to connect it, it says "Negotiation with the vpn server failed"

actually L2TP connection with pre-shared key get connect well but IPsec with ssl cert no!!!

anyone knows whats go wrong with it?


Network Administrator
Cisco, Microsoft, VMWare and LPI certified

[Updated on: Mon, 10 June 2013 11:24]

Report message to a moderator

Re: problem: IPsec vpn with ssl cert on iphone [message #103726 is a reply to message #103659] Wed, 12 June 2013 09:10 Go to previous messageGo to next message
mlee (Kerio)
Messages: 211
Registered: October 2012
Location: Sydney
AFAIK as yet IPsec VPN with certificate does not work with iOS devices. I have created a feature request for this.


PTSD. BP. OCD. ASPD. BPD. Certified.
Re: problem: IPsec vpn with ssl cert on iphone [message #112433 is a reply to message #103659] Wed, 09 April 2014 17:14 Go to previous message
maa1 is currently offline  maa1
Messages: 90
Registered: April 2005
Now Kerio Control IPsec+cert VPN work on iOS devices?
or which version will have this worked?
Previous Topic: ANNOUNCEMENT: Downloads now available in Support section of website
Next Topic: Site to Site vpn via Cisco
Goto Forum:

Current Time: Sun Apr 02 10:17:59 CEST 2023

Total time taken to generate the page: 0.03447 seconds