Hello.
I’ve been able to succesfully configure L2TP/IPsec connection for multiple road warriors that would need to work remotely from any place (unknown IPs) using same PSK and different secrets for every user. For the ease of management I would like to change authentication of workstatations to certificates with CRL so that I can revoke user certificate if his workstation get lost/stolen.
Is that scenario possible? Any tips on how to achieve that?
This instructions shows only connections that are authenticated by certificate without the need to authenticate the user.