Wondering if someone who understands the VPN universe well enough could help me out here. I’m looking at this article on IKEv2 w/ macOS 10.12 and wondering if this would be possible on VyOS Helium 1.1.7? I did not see anything that looked similar on the Proposed Enhancements page and could not find any information that looked relevant in the chat or forum history.
My desired use case would be that multiple users could log into the system and the system can slave off FreeIPA for credentials. FreeIPA can provide either LDAP, RADIUS or KRB5 authentication endpoints and can also generate and provide client certificates per user. Ideally, devices in the field could opportunistically encrypt.
I guess my first question is whether there is any way to do this at all (whether on Helium or later versions), but falling short of that, what are the missing pieces that others might imagine? It seems like an excellent opportunity to learn more about VPN on VyOS.