Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 3 answers
  • Subscribers 28 subscribers
  • Views 10635 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Open VPN Error : Polar SSl : Error Parsing cer cerificate : x509 - the date tag or value is invalid

KhaledMaged

i have this error on my users IOS : Open VPN Error :  Polar SSl : Error Parsing cer cerificate : x509 - the date tag or value is invalid 

 

this from long time ago and i thought it will be solve after the new firmware 16 !!!, but unfortunately seems not, or i have wrong configuration, can any one please help 



This thread was automatically locked due to age.
  • 0

    is it too difficult so 82 view and no answer !!!! ?

  • 0

    HI Khaled, 

    Did you look into this thread the issue is similar and would suggest you to post with an ongoing post . 

    https://community.sophos.com/products/xg-firewall/v16beta/f/sfos-v16-beta-issues-bugs/80701/xg-firewall-ssl-vpn-does-not-connect-certificate-date-tag-problem

  • 0 in reply to Aditya Patel

    I have the same exact issue with the X509 certificate on IOS devices.  The suggested thread above does not address this issue.  IS someone going to post a fix for this?  I tried the upgrade to v16 with the same issues, IOS devices cannot connect.  Please help!

  • 0 in reply to Wolfk9

    this work with me 

     

    That should definitely help move forwards, delete the user under Authentication > Groups and then delete the certificate (if it hasn't already) that applies to that user under Certificates :)

    That should regenerate the users SSL cert.

  • 0 in reply to KhaledMaged

    Thanks Khaled,

    This worked.  After I had updated the XG to v16 it didn't work.  So I then deleted my user account and recreated it.  This did delete the user certificate.  I recreated the user account but didn't realize at first, that connecting the VPN again would not generate the new cert so initially, it failed.

    I logged into the user portal, which generated a new certificate.  I was able to downloaded the new client config file on my Mac which contained the new cert.  Because my FW is on the inside of my ISP modem/router, I did have to edit the config file to use the external DNS name and port.  I was also able to log in via my iOS device and download the new config file.  This time the iOS VPN worked!  

    Thanks again for the suggestion!

    M