[Lowtrac]

I'm using pre-shared keys with no certificates. I set up a new group, IKE proposal, and SA for BlackBerry access. Here's all the settings I'm using on the 3005:

**IKE Proposal**
Proposal Name: blackberry
Authentication Mode: Preshared Keys
Authentication Algorithm: MD5/HMAC-128
Encryption Algorithm: DES-56
Diffe-Hellman Group: Group 2 (1024-bits)
Lifetime Measurement: Time
Data Lifetime 10000
Time Lifetime 86400

**Security Association**
SA Name: blackberry
Inheritance: From Rule
*IPSec Parameters*
Authentication Algorithm: ESP/MD5/HMAC-128
Encryption Algorithm: DES-56
Encapsulation Mode: Tunnel
Perfect Forward Secrecy: Disabled
Lifetime Measurement: Time
Data Lifetime 10000
Time Lifetime 28800
*IKE Parameters*
IKE Peer: 0.0.0.0
Negotiation Mode: Main
Digital Certificate: None (Use Preshared Keys)
Certificate Transmission: Identify certificate only
IKE Proposal: blackberry

I am able to successfully connect to the VPN with my Torch, but not my PlayBook. I've tried basic, advanced, and manual algorithm selection on the PB without success. After increasing the logging level in the VPN box, I can see that communication is actually happening, but it seems that the concentrator sends out a packet to the PB after group name and such is verified and it gets no response. I'm not seeing it complete phase 1. No error shows on the PB, it just says connecting, then goes back to the edit VPN profile screen almost instantly.

Any ideas?

[Lowtrac]

Just to follow up, I used the 90 days free support and submitted the problem to RIM. I have an incident number, but no answer yet. I'll update when I hear something.

[Jagga]

looking forward to your findings. i find RIM's lack of support in this area VERY appalling; very pathetic really.

[Lowtrac]

Me too so far... I did get a response, but they sent a link about how to import certificates on the PB. That would be helpful, but I clearly stated that we're using preshared keys and not certificates for client authentication. I'm sending in configs and logs now. We'll see how it goes.

[mhhendricks]

I too am unable to connect to Cisco VPN Concentrator from the Playbook. I have setup the usergroup and username the same as a desktop vpn client. While viewing the Live Event Log on the Concentrator, I can see the device get connected and the user successfully authenticated, but no mention of why it was disconnected. The Playbook's logs simple show it was connecting, then disconnected. To my knowledge I have everything set correctly and even the Concentrator log shows it was authenticated. I would really like to posted what RIM support replied back to you with Lowtrac. Any updates would be helpful.

[jslawell]

Is it possible that the IP of the playbook is having a conflict with the IP the VPN is issuing? That was the problem I had getting mine to connect.

[mhhendricks]

Interesting question jslawell. How exactly did you resolve your IP conflict problem? Did you manually assign an IP in the VPN settings on the Playbook or configure something in the VPN Conentrator? Any details posted would go a long way to us solving our connection problems. And if I am able to figure it out, then I will post what our fix ended up being. Thanks.

[Lowtrac]

I'm on my third support person now with not so much as a suggestion. I just made the third contact today. We'll see how this goes.

[juwaack68]

Curious if you ever got this to work. We also have VPN concentrator and I cannot get VPN to work on the PlayBook (but it works *just fine* on an iPad!!)