Internet Key Exchange (IKE) authentication methods used to authenticate with the IPSec server.


enum NEVPNIKEAuthenticationMethod : Int


Enumeration Cases

case none

Do not authenticate with the IPSec server. Note that extended authentication may still be performed if the useExtendedAuthentication property is set. This value is only valid for IKE version 2 (IKEv2)

case certificate

Use a certificate and private key as the authentication credential. The certificate and private key set in the identityReference or identityData property will be used.

case sharedSecret

Use a shared secret as the authentication credential. The shared secret set in the sharedSecretReference property will be used.

See Also

Accessing IPSec Properties

var authenticationMethod: NEVPNIKEAuthenticationMethod

The method used to authenticate the device with the IPSec server. For IKE version 2, when using extended authentication, this authentication method only affects how the client validates the authentication payload presented by the server.

var useExtendedAuthentication: Bool

A flag indicating if extended authentication will be negotiated.

var sharedSecretReference: Data?

A persistent keychain reference to a keychain item containing the IKE shared secret.

var localIdentifier: String?

A string identifying the iOS or macOS device for authentication purposes

var remoteIdentifier: String?

A string identifying the IPSec server for authentication purposes

Beta Software

This documentation contains preliminary information about an API or technology in development. This information is subject to change, and software implemented according to this documentation should be tested with final operating system software.

Learn more about using Apple's beta software