From 457077686e362426bb5d12e610cf099bc89555cb Mon Sep 17 00:00:00 2001
From: Franco Fichtner <franco@opnsense.org>
Date: Fri, 5 May 2017 14:49:28 +0200
Subject: [PATCH] ipsec: enable ca field for hybrid and mutual rsa xauth

PR: https://forum.opnsense.org/index.php?topic=5120.0
---
 src/www/vpn_ipsec_phase1.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/www/vpn_ipsec_phase1.php b/src/www/vpn_ipsec_phase1.php
index 6bdd556ee..bfcfead75 100644
--- a/src/www/vpn_ipsec_phase1.php
+++ b/src/www/vpn_ipsec_phase1.php
@@ -464,8 +464,6 @@ include("head.inc");
             $(".auth_opt :input").prop( "disabled", true );
             switch ($("#authentication_method").val()) {
                 case 'eap-tls':
-                case 'hybrid_rsa_server':
-                case 'xauth_rsa_server':
                 case 'eap-mschapv2':
                     $(".auth_eap_tls").show();
                     $(".auth_eap_tls :input").prop( "disabled", false );
@@ -482,6 +480,8 @@ include("head.inc");
                         $(".auth_psk :input").prop( "disabled", false );
                     }
                     break;
+                case 'hybrid_rsa_server':
+                case 'xauth_rsa_server':
                 case 'rsasig':
                     $(".auth_eap_tls_caref").show();
                     $(".auth_eap_tls_caref :input").prop( "disabled", false );