Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 36 replies
  • Subscribers 1 subscriber
  • Views 57528 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN - Not working after upgrade to UTM 9

TheExpert
Hello together,

I upgraded from ASG 8.305 to UTM 9. When wanting to connect via SSL VPN I see the following error in the Log of the SSL VPN client which is updated, too:

VERIFY X509NAME ERROR: C=de, L=***, O=*** Mössner, CN=***, emailAddress=***, must be C=de, L=***, O=*** Mössner, CN=***, emailAddress=***

You can see that there is difference for the "O" field. The certificates were imported from the ASG installation where the SSL VPN worked fine.

When looking into the certificates on the UTM 9 and on the client, the "O" field looks good, there is no problem with vowel mutation.

So my question is: Which certificate is presented with the wrong information? Is it the certifacte of the SSL VPN client or is it the CA certificate of the UTM 9 and what can I do to correct the issue without resigning the HTTPS proxy certificate and all the other certificates?

Thank you

TheExpert


This thread was automatically locked due to age.
Parents
  • 0
    Hello again,

    after changing the row with the TLS part in .ovpn file of the SSL VPN client regarding the "O" field to "..., O=*** Mössner" I didn't get the error message shown in my last post.

    But the connection isn't available yet because of this error message:

    [***.net] Peer Connection Initiated with ***.***.***.***:1194
    MANAGEMENT: >STATE:1344261192,GET_CONFIG,,,
    SENT CONTROL [***.net]: 'PUSH_REQUEST' (status=1)
    AUTH: Received AUTH_FAILED control message
    TCP/UDP: Closing socket
    SIGTERM[soft,auth-failure] received, process exiting
    MANAGEMENT: >STATE:1344261193,EXITING,auth-failure,,

    I can't find the reason for the auth failure because I can authenticate with the same credentials to the user portal.

    Thank you for your help

    TheExpert

    Kind Regards

    TheExpert

Reply
  • 0
    Hello again,

    after changing the row with the TLS part in .ovpn file of the SSL VPN client regarding the "O" field to "..., O=*** Mössner" I didn't get the error message shown in my last post.

    But the connection isn't available yet because of this error message:

    [***.net] Peer Connection Initiated with ***.***.***.***:1194
    MANAGEMENT: >STATE:1344261192,GET_CONFIG,,,
    SENT CONTROL [***.net]: 'PUSH_REQUEST' (status=1)
    AUTH: Received AUTH_FAILED control message
    TCP/UDP: Closing socket
    SIGTERM[soft,auth-failure] received, process exiting
    MANAGEMENT: >STATE:1344261193,EXITING,auth-failure,,

    I can't find the reason for the auth failure because I can authenticate with the same credentials to the user portal.

    Thank you for your help

    TheExpert

    Kind Regards

    TheExpert

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML