Hi.
I set up IKEv2 server using this instruction: https://mikrotikacademy.pl/ipsec-ikev2-radius-lets-encrypt-ros7/
It’s working great but as Windows does not have LE Intermediate certificates and needs to install them manually I bought a certificate for my domain to make Windows connections more user-friendly. I imported certificate to Mikrotik, changed it in User Manager and in IPsec identity and it is not working… “got fatal error: AUTHENTICATION_FAILED” Why?
The differences I see are:
In paid certificate Subject Alt. Name has additional www.mydomain
Key Size is 4096 vs 2048
While researching that I know now that I can pass two certificates in IPsec identity to make Windows accept connection with LE, but as I paid for a certificate I would like to use it..