This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPsec Client VPN Certificate problem

Hi there,

Our IPsec VPN Client was working fine but suddenly it stopped working giving this error 'Filed to established child SA' knowing that the SSL client VPN is working fine.

In the Admin page of Sophos VPN it says ''undefined' remote certificate has expired or is not yet valid' I need explanation and guidance please on how to deal with the certificate or how to create one if required and link it there and what type of "local" and "remote" certificates I should choose.

Thanks.

This thread was automatically locked due to age.

Parents

0 Wisam Mouslli over 4 years ago

Thanks Emmanuel,

We are having Active Directory Authentication, please find the below error message

Thanks
Cancel
Vote Up 0 Vote Down

Cancel
0 emmosophos over 4 years ago in reply to Wisam Mouslli

Hello Wisam,

Thank you for the screenshot, I thought you mentioned you were seeing this in the Sophos Connect configuration page in the XG firewall, but please clarify.

Please check the OpenVPN Log in the client and the charong.log and strongswan.log on the XG at the moment the client tries to connect.

And in the Sophos Connect configuration for Authentication Type are you using Preshared Key or Digital Certificate?

Regards,
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 emmosophos over 4 years ago in reply to Wisam Mouslli

Hello Wisam,

Thank you for the screenshot, I thought you mentioned you were seeing this in the Sophos Connect configuration page in the XG firewall, but please clarify.

Please check the OpenVPN Log in the client and the charong.log and strongswan.log on the XG at the moment the client tries to connect.

And in the Sophos Connect configuration for Authentication Type are you using Preshared Key or Digital Certificate?

Regards,
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data