Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 1 subscriber
  • Views 3385 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cisco VPN Client with Thawte SSL123

MadMaex
Hello,

we bought a Thawte SSL123 certificate yesterday an installed it in Sophos UTM 9.1.
The certificate is working for WebAdmin/User Portal, for TLS and so on, but if we try to use it for Cisco VPN Client following error occurs:
The certificate of the CA that issued the 'host.domain.com' certificate is needed.

The "Thawte Primary Root CA" and the intermediate CA "Thawte DV SSL CA" are both installed in "Certificate Management / Certificate Authority", as 2 CAs.

Please help!

Bye
Markus


This thread was automatically locked due to age.
Parents
  • 0
    Marc & Markus,

    What's the reason to want to use something other than the 'VPN Signing CA" and the "Local X509 Cert" for IPsec?

    Then again, maybe this is what is seen when the Cert uses MD5 (no longer supported by Apple) instead of SHA1. What is the 'Signature Algorithm' in your CAs and Cert?

    Cheers - Bob
Reply
  • 0
    Marc & Markus,

    What's the reason to want to use something other than the 'VPN Signing CA" and the "Local X509 Cert" for IPsec?

    Then again, maybe this is what is seen when the Cert uses MD5 (no longer supported by Apple) instead of SHA1. What is the 'Signature Algorithm' in your CAs and Cert?

    Cheers - Bob
Children
No Data