Can I generate files while adding a new user for ikev2 with encryption algorithm ed448 or ed25519?

Question

Can I generate files while adding a new user for ikev2 with encryption algorithm ed448 or ed25519?

algoritmsystems opened this issue 3 months ago · 1 comments

Can I generate files while adding a new user for ikev2 with encryption algorithm ed448 or ed25519?
Which algorithm types are supported and how to configure it?

Answer 1 · 2024-03-20T16:50:36.000Z

@algoritmsystems Hello! This is not currently supported. Currently, the IKEv2 script generates certificates with RSA signatures and 3072-bit keys by default. See ikev2setup.sh or /opt/src/ikev2.sh on your server. You may be able to customize the certutil commands to use curve25519, but there may be some bugs that prevent it from working.