Solved: iOS 13 & macOS Catalina IKEv2 VPN not working anymore

RouterOS General
1

Hey People,
since iO13 or macOS Catalina IKEv2 VPN isn’t working anymore (client certificates).

While trying to connect you get this error:

“User authentication failed”

From the MikroTik logs everything looks fine (client gets an IP assigned). MacOS Mojave and iOS12 are still working fine.

This thread shows the same issue (https://forums.developer.apple.com/thread/121193) and suggests setting sha2-truncbug to “no” in /etc/ipsec.conf on the VPN server.
Whats the setting on iOS?
“Apple seems to have silently fixed their racoon code which is known to be buggy with SHA-256 authentication algorithm truncation.
The problem can be fixed also for racoon gateways by removing hmac_sha256 from the list of IKE phase 2 authentication algorithm proposals. Unfortunately, Apple IPhones with IOS13 then choose the weak SHA-1 algorithm.”

There were some issues regarding sha2-truncbug in earlier RouterOS versions (http://forum.mikrotik.com/t/solved-ipsec-troubleshooting/104954/2).

Here are some infos in the FAQ of LibreSwan (https://libreswan.org/wiki/FAQ).

Official announcement (IKEv1): https://support.apple.com/en-us/HT210432

Starting with iOS 13, IPsec supports HMAC-SHA-256 with IKEv1 VPN.
“To make sure that your iOS 13 and macOS Catalina clients can connect to your IKEv1 or VPN server, configure the server to truncate the output of the SHA-256 hash to 128 bits. Truncating to a smaller number of bits might cause the server to drop data that VPN clients transmit.”

Any ideas?

IKEv2 IOS - Cannot Connect
2

I have the same problem. With android it works successfully. But on iOS13 it does not. Is it a Mikrotik issue or iOS?

3

Don’t want to blame anyone… The tunnel seems to establish fine but iOS thinks it’s an “User Authentication” error.
Regarding to apple we need to “configure the server to truncate the output of the SHA-256 hash to 128 bits” on the MikroTik, but how?
Emil is already on it (opened a ticket, support.rif submitted)

4

If it is SHA256 issue I would expect that by using SHA1 would work. But this is not the case. Even MD5 does not work. All produce authentication errors. Lets hope that Mikrotik will release a fix soon cause this is a major issue

5

confirmed, changing to different hash algorithm doesn’t help.

6

I found and iPhone 12.4.2, released after 13. Last update. I am having the same issue. Can anyone confirm?

UPDATE: My fault it works. I had to add the “Local ID”

7

I am confused and can’t understand what you are saying. Please let us know what works and what not and how you probably fixed it.

8

I made an invalid statement that the configuration does not also work with iOS 12.4.2. But it actually does work. I had a mistake in my configuration.

9

Just found the RFC wich mentions the truncate issue:
https://tools.ietf.org/html/rfc8221

AUTH_HMAC_SHA2_256_128 was not mentioned in [RFC7321], as no
SHA2-based authentication was mentioned. AUTH_HMAC_SHA2_256_128 MUST
be implemented in order to replace AUTH_HMAC_SHA1_96. Note that due
to a long standing common implementation bug of this algorithm that
truncates the hash at 96 bits instead of 128 bits, it is recommended
that implementations prefer AUTH_HMAC_SHA2_512_256 over
AUTH_HMAC_SHA2_256_128 if they implement AUTH_HMAC_SHA2_512_256.

IKE2 identity not found (IOS to Mikrotik)
10

https://forums.developer.apple.com/thread/121193

11

Hello,
Do you have any update on this problem please ?
“User Authentication Problem” seems to be persisted even if I changed to Sha1 proposal.
Thanks for your help.
Christophe

12

Not yet - Emil from support suggested to check the certificate to include the subject alternative names of local and remote id which didn’t help (i just tried it with the client certificate)
Screenshot 2019-10-23 at 17.52.16.png

13

SOLVED:
Thx to Emils Z. from support.
He pointed out, that in iOS13 & macOS Catalina “Apple has added SAN certificate field verification and it fails in the new version because your certificates does not have any Subject Alt”.
I re-created both certificates for client & server with subject alternative names field (SAN) configured:
PastedGraphic-2.png
Solution: create certificates with SAN fields configured
Now it’s working on iO13 and macOS catalina

14

Did you changed something else on your IKEv2 configuration? This is not working for me and I have the SAN on the certificates and in the server matching the common name with the SAN DNS.

15

no - except of changing to the new certificate :wink: Did you change it?
Can you show screenshots of your certs?
Screenshot 2019-11-14 at 09.23.49.png

16

Yes, I changed the certificates.

You setup for the peer is different of mine. Wondering if that can be another of the reason. BTW, what RouterOS version are you running? Mine (6.43.:sunglasses: doesn’t look like yours.

17

I’m on the most current 6.45.7

this is my config:

/ip ipsec profile
add dh-group=modp2048 dpd-interval=1h enc-algorithm=aes-256 hash-algorithm=sha256 lifetime=1h name=ikev2
/ip ipsec peer
add exchange-mode=ike2 name=ikev2 passive=yes profile=ikev2 send-initial-contact=no
/ip ipsec proposal
add auth-algorithms=sha256,sha1 enc-algorithms=aes-256-cbc,aes-256-gcm lifetime=1h name=ios-ikev2-proposal pfs-group=modp2048
/ip pool
add name=default-dhcp ranges=192.168.88.10-192.168.88.254
add name=vpn ranges=192.168.1.250-192.168.1.253
/ip ipsec mode-config
add address-pool=vpn name=vpn

/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" disabled=yes ipsec-policy=out,none out-interface-list=WAN
add action=masquerade chain=srcnat comment="nat for vpn clients" out-interface=bridge
/ip ipsec identity
add auth-method=digital-signature certificate=vpn.server generate-policy=port-strict mode-config=vpn peer=ikev2 remote-certificate=vpn.client
/ip ipsec policy
set 0 proposal=ios-ikev2-proposal

/certificate print 
Flags: K - private-key, L - crl, C - smart-card-key, A - authority, I - issued, R - revoked, E - expired, T - trusted 
 #         NAME                                   COMMON-NAME                                 SUBJECT-ALT-NAME                                                              FINGERPRINT                                
 0 K  A  T my.ca                                  my.ca                                                                                                                   
 1 K  A    vpn.server                             vpn.server                                  DNS:vpn.server                                                               
 2 K  A    vpn.client                             vpn.client                                  DNS:vpn.client
18

Hi there!

I'm trying to use your config - but it does not work for me!
I have 2 devices:

  1. iOS 13.2.3
  2. MacOS 10.15.1

[admin@Home CCR01009] /ip ipsec policy> /certificate print
Flags: K - private-key, L - crl, C - smart-card-key, A - authority, I - issued, R - revoked, E - expired,
T - trusted

NAME COMMON-NAME SUBJECT-ALT-NAME

0 K A T my.ca my.ca DNS:my.ca
1 K A vpn.server vpn.server DNS:vpn.server
2 K A vpn.client vpn.client DNS:vpn.client

Снимок экрана 2019-11-22 в 11.41.57.png
Снимок экрана 2019-11-22 в 11.41.57.png1742×899 11.3 KB

All my certificates got Alt-Names (DNS), but i received: VPN server did not respond.
Any ideas?

19

What do the certificates look like?

20

theprojectnewbie,

I had all this working on IOS12 / High Sierra, however since upgrading to IOS13 / Catalina, I'm getting an array of different issues. Thinking this was related to the SAN issue you mentioned above, I wiped everything out and started over while generating SAN names identical to yours for testing. We'd like to get this functioning for 3 users, each with a MacBook and an iPhone.

I'm curious about your certificates, are you generating all the certs on the Mikrotik and exporting those to the Mac devices directly or are you needing to use Apple Configurator 2 to disable EAP support per this article (https://itimagination.com/mikrotik-ikev2-vpn-server-setup-guide/)?

When this was working several months ago, on our iPhones, the remote ID and server hostname were both set to a DNS hostname that resolved to our MicroTik, is this also what you have or are you specifying it via IP (which is actually preferred if there some sort of major DNS issue)? Also, for LocalID, are you setting that to anything or leaving it blank? On our iPhone configs that used to work, those were blank.

These are our certs as of now. I'd like to add 6 in total, one for each iPhone/Laptop.

Flags: K - private-key, L - crl, C - smart-card-key, A - authority, I - issued, R - revoked, E - expired, T - trusted

NAME COMMON-NAME SUBJECT-ALT-NAME FINGERPRINT

0 K A T companyname.ca companyname.ca
1 K A vpn.server vpn.server DNS:vpn.server
2 K I vpn.client vpn.client DNS:vpn.client
3 K A vpn.JohnB-iPhone vpn.JohnB-iPhone DNS:vpn.JohnB-iPhone