I'm trying to setup IKEv2 vpn server to use it with BB Z10, but I can't get it to work. The farther I got is error 812.
Here's how the server is set up:
Single server with RRAS, NPS, RDS and Enterprise CA on server 2008 R2 SP1 standard. The server sits behind the NAT device and I use public IP in subject name for IKE cert. Also under Enhanced Key Usage I have Server Authentication and IP security IKE intermediate. Without Server Authentication I was getting different error. Root cert is present on both server and client computer.
The NPS network policy has Windows Group, Allowed EAP Types (Microsoft PEAP - Smart Card and Secure password EAP-MSCHAP v2, and Microsoft: Secure password (EAP-MSCHAP v2)), Authentication Type is set to EAP or PEAP.
Under Constraints, Authentication Methods is set to Microsoft: Secure password (EAP-MSCHAP v2).
Under Settings the Encryption is set to Strong and Strongest.
On the client computer I have root certificate installed. IN VPN client Properties -> Security, the type of VPN is set to IKEv2, data encryption to Require and Authentication type to Microsoft: Secure password (EAP-MSCHAP v2).
Any change to Network Policy authentication type causes Error 13863: Invalid Situation.
Thanks!