This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Certificate Time Error with SSL VPN

Can anyone give me guidance on a situation with SSL VPN?
I am running the latest version for home use. I seem to have everything involving the internal network configured correctly and I have followed the directions for the creation of users, packet filters, etc on the VPN. However, when I connect I get the error "Your certificate is not yet valid-check your system time and date". I am using the same ntp server on my local pc as well as on the firewall.

Time zone setting is correct for my area.
I have imported certificate using mmc also.

Any suggestions would be greatly appreciated.

Thanks,

Eric

This thread was automatically locked due to age.

0 BAlfson over 14 years ago

Hi, Eric, and welcome to the User BB!

Look in 'Certificate Management' to check the dates of your X509 User Cert - is the 'Valid from' correct?

The only cert one needs to import via mmc is the HTTPS Proxy Singing CA and that's not related to the SSL VPN, so that part of your post confused me.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 ESR over 14 years ago

Bob,

You were right on the money. All the certificates had a beginning valid date of 2020. After regenerating them all everything is working great.

Thanks very much for your time,

Eric
Cancel
Vote Up 0 Vote Down

Cancel
0 Steven Grabowski over 6 years ago in reply to ESR

I had the same issue. I'm happy the wonderful folks at Sophos have had the insight to invalidate the appliance certificates out of the box by making them valid in the distant future.

What's extra special is losing connectivity to the box when you regenerate the default cert. Well done engineers
Cancel
Vote Up 0 Vote Down

Cancel