IKEv2 Certificate + Pre-shared key

We were looking for options to increase the mobile VPN security. We noticed that L2TP has the option to have a certificate and pre-shared key, while IKEv2 is one or the other. Is there any option to have both, certificate and pre-shared key, with IKEv2?



  • Options
    james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @DVM
    No. This isn't possible.

    The certificate or the pre-shared are is used to generate a hash - since IKE is a interoperable standard, changing how the firebox reacts to those keys would likely break any clients attempting to connect to it.

    -James Carson
    WatchGuard Customer Support

Sign In to comment.