Problem establishing a vpn between a cisco router and a PC based Cisco VPN Client
using version 4.6 (had problems with 4.8 & 5.0). Only trying to accomplish
device authenication with digital certificates without any interest in user
authenication/authorization, so I've eliminated the Xauth from IKE and login
stuff from the client config.
I've got to take about half a dozen users into production asap...
I am thinking the access list may be the problem since the pc client is
expecting to have encrypted communications, but the cisco router is
still doing all it's checks and balances with IKE/ISAKMP to finish device
authenication with one certificate on each. Error message seem straight
forward, but I'm new to the vpn config's and have tested pki for
about 6 months wo/ going into production. Attached are logs with recommended
debug turned on for crypto ike/ipsec/pki/etc.