Does Mikrotik (OS 3.28) support ipsec extended authentication (XAUTH)? I use external ipsec client and when XAUTH is enabled connection cannot be established. There is an error in logs:
ipsec rejected authmethod: DB(prop#1:trns#1):Peer(prop#1:trns#1) = pre-shared key:GSS-API on Kerberos 5
When XAUTH is disabled on client everything works fine.