Latest version doesn't support keychain?

[Bradley2468]

My android (Pixel, running Oreo) updated OpenVPN Connect this afternoon to 1.1.21.

This deleted my existing profile from the app.

I tried to re-install it, but the import gives the error: "Error parsing OpenVPN profile : client.ovpn : mbed TLS: ca certificate is undefined"

My .ovpn profile doesn't have a <ca> section - I use the Keychain-based config (https://docs.openvpn.net/faqs/faq-regar ... d_Keychain). Is that no longer supported?

[TinCanTech]

https://play.google.com/store/apps/deta ... nvpn&hl=en

What's New
Changes from 1.1.21 to 1.1.22:
* fix for importing profiles using external certificates/bundles

[ordex]

did the latest release help?

[ogimpel]

My android (Pixel, running Oreo) updated OpenVPN Connect this afternoon to 1.1.21.

This deleted my existing profile from the app.

I tried to re-install it, but the import gives the error: "Error parsing OpenVPN profile : client.ovpn : mbed TLS: ca certificate is undefined"

My .ovpn profile doesn't have a <ca> section - I use the Keychain-based config (https://docs.openvpn.net/faqs/faq-regar ... d_Keychain). Is that no longer supported?

Had the same issue,

To solve it, take a CA certificate (not a certificate of your server, but a CA that issued server certificate) and put it to the end of your config file, do not forget <ca></ca>

Here is my config example with 2 CA certificates from Let'sEncrypt (Chain)

Code: Select all

dev tun
proto tcp-client
remote x.x.x.x 1194
tls-client
ping 15
ping-restart 45
ping-timer-rem
persist-tun
persist-key
cipher BF-CBC
auth SHA1
pull
auth-user-pass
<ca>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</ca>