Business Community > Requests & Suggestions > IKEv2/IPSec VPN User cannot create without assigned VPN Server
< Requests & Suggestions
 
1
Votes

IKEv2/IPSec VPN User cannot create without assigned VPN Server

 
1
Votes

IKEv2/IPSec VPN User cannot create without assigned VPN Server

IKEv2/IPSec VPN User cannot create without assigned VPN Server
IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-05-27 20:04:16 - last edited 2025-06-25 03:05:49

Hello,

 

Based on this guide, you can't create a user in Omada version 5.15.8.12 without specifying a VPN server.

The problem is, although I can select "IPsec" in the VPN server configuration, I can't select "IPsec" as the VPN server later when creating a user because it's not listed.

However, the user is required for Android, or in my case, for an iOS device.

And I explicitly want to use IPsec because AIprint doesn't work over VPN with Wireguard, etc.

ER605 v2.0 OC200 V1 TL-SG3428 v2.0 TL-SG2210P v5.20 TL-SG105E v5 EAP245(EU) v4.0 (1x) EAP653(EU) v1.0 (3x) Modem - Fritz!Box 7490 (DSL 100 / DS Lite tunnel)
#1
Options
7 Reply
Re:IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-05-28 08:36:38 - last edited 2025-06-25 03:05:49

Hi  @nurix 

 

What kind of controller are you using? 5.15.8 is a little old, please update it to the latest first.

 

Which guide are you referring to? Please share a link.

 

The problem is, although I can select "IPsec" in the VPN server configuration, I can't select "IPsec" as the VPN server later when creating a user because it's not listed.

>>>Please also share a screenshot of the ipsec VPN server config, and a screenshot of the list when you trying to create a user.

Wish you a happy life and smooth network usage!  >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
#2
Options
Re:IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-05-28 10:57:01 - last edited 2025-06-25 03:05:49

  @nurix 

 

There is no username and password functionality for IPsec / IKE v1/v2 VPNS - they rely on the local and remote IDs as configured in the vpn server configs.

 

Usernames and passwords are o0only available for PPTP, L2TP, openvpn etc

Main: ER8411 x1, SG3428X x1, SG3452 x1, SG2428LP x1, SG3210 x1, SG2218P x1, SG2008P x3, ES208G x1, EAP650 x6 Remote: ER7206 v2 x1, ER605 v2 x3, SG2008P x2, EAP650 x2, ES205G x1 Controller: OC300
#3
Options
Re:IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-05-30 10:05:47 - last edited 2025-06-25 03:05:49

  @GRL 

 

when I configure IPsec on iPhone I have to set user and password otherwise I can't save the profile.

 

Is still the same on newer version 5.15.20.39

i can't save the user profile without a server.

 

so the how to's not working anymore.

 

 

 

 

ER605 v2.0 OC200 V1 TL-SG3428 v2.0 TL-SG2210P v5.20 TL-SG105E v5 EAP245(EU) v4.0 (1x) EAP653(EU) v1.0 (3x) Modem - Fritz!Box 7490 (DSL 100 / DS Lite tunnel)
#4
Options
Re:IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-05-31 06:42:58 - last edited 2025-06-25 03:05:49

Hi  @nurix 

 

Did you try to create a user via the controller's web interface?

Please also share a screenshot of the configured VPN server.

 

If click this button, what will it show?

 

I would recommend updating the controller and router to the latest firmware first.

 

 

Wish you a happy life and smooth network usage!  >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
#5
Options
Re:IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-06-24 19:44:16 - last edited 2025-06-25 03:05:49

  @Vincent-TP 

 

on newer Firmware the same Problem there is no Option to select IPsec Server.

 

You can see on the VPN Server Setup in the rolling option when i switch to client there is also no IPsec.

 

 

Please add this Option i have spend weeks with Wireguard to see that Airprint not working through Wireguard VPN.

I guess on the Fritzbox with IPsec it is possibleso i would figure out if it's working also on omada?

 

OC200 Version

5.15.20.391.35.7 Build 20250514 Rel.51837

 

Omada App Version

4.24.36

 

 

 

 

ER605 v2.0 OC200 V1 TL-SG3428 v2.0 TL-SG2210P v5.20 TL-SG105E v5 EAP245(EU) v4.0 (1x) EAP653(EU) v1.0 (3x) Modem - Fritz!Box 7490 (DSL 100 / DS Lite tunnel)
#6
Options
Re:IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-06-25 03:03:40 - last edited 2025-06-25 03:06:48

Hi  @nurix 

 

Thanks for the screenshots; I understand now.

 

SDN routers don't support functioning as an IPSEC client.

This is the current design limitation. We would recommend that you consider other supported VPN types.

 

Thanks for your understanding.

 

Side Note: I had moved this post to Requests & Suggestions block to gather more voters.

remind: To make it clearer, you may update the title of this post, such as SDN router can't work as IPSec VPN client.

Wish you a happy life and smooth network usage!  >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
#7
Options
Re:IKEv2/IPSec VPN User cannot create without assigned VPN Server
2025-06-25 22:35:21

  @Vincent-TP 

 

just to clarify.

 

What i need is, to add, on a iOS (Client) device the IPSec VPN Tunnel.

Here i need to add a Username / Password.

 

PROBLEM is i can't create a user on omada because in the list of "VPN Type" i can't choose "IPsec" and than also not the before created VPN Server "IKEv2_IPSec_PSK"

 

This can't be a extra feature on a sdn router .

 

 

 

 

 

ER605 v2.0 OC200 V1 TL-SG3428 v2.0 TL-SG2210P v5.20 TL-SG105E v5 EAP245(EU) v4.0 (1x) EAP653(EU) v1.0 (3x) Modem - Fritz!Box 7490 (DSL 100 / DS Lite tunnel)
#8
Options

Information

Helpful: 1

Views: 421

Replies: 7

Voters 1

voter's avatar
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.