这是本文档旧的修订版！

claim-PFZcyy7nRvz5gm3wCUqE

ip address : get the first net interface IP address by shell

IPADDR=$(ip addr | awk '/^[0-9]+: / {}; /inet.*global/ {print gensub(/(.*)\/(.*)/, "\\1", "g", $2)}'|head -1)

https://pan.palfort.cn/index.php/s/rcEJx308ygX5XCz

we fixed the problem with trusting all Root certificates for IKEv2 machine authentication with the following PowerShell cmdlet/switch: Set-VpnAuthProtocol -RootCertificateNameToAccept https://technet.microsoft.com/en-us/library/hh918382.aspx This can be used to specify an internal trusted Root CA when validating IKEv2 machine certs and negates the need to “clean” the Trusted Roots Cert store on the RRAS server