If the certificates are to be obtained from a Microsoft CA, select either of these templates: IPSec (Offline Request), User, Administrator.
The names server and client certificates are used in order to distinguish between the certificates used in the SonicWall (server) and the Mac OS X L2TP/IPsec client (client).However, the configuration would be similar in other Mac OS X versions. The client configuration described here is for a Mac OS X 10.8.2 ( Mountain Lion).
This KB article describes the method to configure SonicWall WAN GroupVPN and Mac OS X L2TP/IPsec clients to use digital certificates for authentication before establishing an L2TP/IPsec VPN tunnel. In SonicWall UTM devices, digital certificates are one way of authenticating two peer devices to establish an IPsec VPN tunnel. Using digital certificates for authentication instead of preshared keys in a VPN configuration is considered more secure. Storage Performance and Utilization Management.Information Archiving & Storage Management.Hybrid Active Directory Security and Governance.Starling Identity Analytics & Risk Intelligence.One Identity Safeguard for Privileged Passwords.