PayloadDisplayName {{ profile_name }} PayloadIdentifier {{ rfqdn }} PayloadUUID {{ '' | get_uuid }} PayloadType Configuration PayloadVersion 1 PayloadContent PayloadIdentifier {{ rfqdn }}.conf1 PayloadUUID {{ '' | get_uuid }} PayloadType com.apple.vpn.managed PayloadVersion 1 UserDefinedName {{ vpn_name }} VPNType IKEv2 IKEv2 RemoteAddress {{ remote }} RemoteIdentifier {{ authentication.local_id if authentication.local_id is vyos_defined else 'VyOS' }} LocalIdentifier ServerCertificateIssuerCommonName {{ ca_cn }} ServerCertificateCommonName {{ cert_cn }} AuthenticationMethod Certificate ExtendedAuthEnabled 1 IKESecurityAssociationParameters EncryptionAlgorithm {{ ike_encryption.encryption }} IntegrityAlgorithm {{ ike_encryption.hash }} DiffieHellmanGroup {{ ike_encryption.dh_group }} ChildSecurityAssociationParameters EncryptionAlgorithm {{ esp_encryption.encryption }} IntegrityAlgorithm {{ esp_encryption.hash }} DiffieHellmanGroup {{ ike_encryption.dh_group }} {% if certs is vyos_defined %} {% for cert in certs %} PayloadIdentifier org.{{ cert.ca_cn | lower | replace(' ', '.') | replace('_', '.') }} PayloadUUID {{ cert.ca_cn | generate_uuid4 }} PayloadType com.apple.security.root PayloadVersion 1 PayloadContent {{ cert.ca_cert }} {% endfor %} {% endif %}