Thanks for the reply again, I’ll now detail my steps in simplified form, hopefully it remains clear.
1) Profile set up,
HostName : zeroshell.xxx.local
K5 Realm : XXX.LOCAL
LDAP Base : dc=xxx,dc=local
We have no use for the Kerberus stuff yet but thought we would make it correct anyway.
2)Set up host for remote computer
Hostname : Computer1
Domain : xxx.local
3)Set VPN settings on ZeroShell
LT2P enabled
set the IP address assignment.
Left Host Certificate to be Local CA OU = Hosts, CN = zeroshell.xxx.local
That’s it for the ZeroShell box, I now turn to remote computer ‘computer1’
1)Added new connection using the external IP address of the ZeroShell Box
2)Added Certificates, for this i followed instructions in the documentation on the site. I downloaded the correct Host and CA certificates. I then ended up with the 2 certificates in 4 places, these were:
Inside
Certificates (Local Computer)
Personal
Certificates
computer1.xxx.local (from computer1.xxx.local PFX)
Trusted Root Certificate Authorities
Certificates
Issued To and By: ZeroShell Example CA (from CA.der)
Certificates – Service (IPSEC Services) on Local Computer
PolicyAgentPersonal
Certificates
computer1.xxx.local (from computer1.xxx.local PFX)
PolicyAgentTrusted Root Certificate Authorities
Certificates
Issued To and By: ZeroShell Example CA (from CA.der)
That took me to the end of the instructions and the error messages given. Any more help or any other information I can give please let me know.
Many thanks again for all time and help 🙂