This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

openvpn handshake failed

Hi all,

I have currently problems setting up the remote access using SSL. I am using ASG 8, latest version. The CAs have been replaced several times, but there is only one CA present as signing CA. What I did now, is creating a certificate with the vpn-id-type ip address. I created some local test-user on the astaro, which also got the certificates signed by the correct CA. Nevertheless when trying to connect, I get a SSL handshake failed ... I am using the standard astaro client from the user portal

Can you tell me where the mistake is in my approach?

Thank you for your assistance!

Regards

This thread was automatically locked due to age.

0 BAlfson over 13 years ago

No answers?  I guess I wasn't the only one on vacation last month. [;)]

What I did now, is creating a certificate with the vpn-id-type ip address.

First guess - when creating a certificate, you must put something into every field.  Instead of making a separate certificate yourself, just use your "Local X509 Certificate" and, if the hostname in the cert is not the same as the current hostname of the ASG, put the hostname in the cert into the 'Override hostname' field on the 'Settings' tab.

Reload the configuration.  Does it work now?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 davirk over 13 years ago in reply to BAlfson

I just ran into this on a mac client and resolved the issue by remove the 'tls-remote' line in the profile config file.
Cancel
Vote Up 0 Vote Down

Cancel