I created an OpenVPN Cloud account and I tried to use OpenVPN Client community edition 2.5.2 (OpenVPN-2.5.2-I601-amd64.msi) to connect to it, unfortunatly durign the connectione I receive the error: "AUTH: Received control message: AUTH_FAILED,SSO Auth Failed due to lack of client support"
I used the .ovpn file generated from the OpneVPN Cloud https://mydomain.openvpn.com/users
This is the file(hidden some parts):
Code: Select all
setenv USERNAME "xxxhiddenxxx/myemailhidden%40gmail.com/xxxhiddenxxx"
# OVPN_WEBAUTH_FRIENDLY_USERNAME=xxxhiddenxxx/myemailhidden@gmail.com/pc
# OVPN_FRIENDLY_PROFILE_NAME=xxx/myemailhidden@gmail.com@mydomain.openvpn.com [Milan]
client
dev tun
remote it-mxp.gw.openvpn.com 1194 udp
remote it-mxp.gw.openvpn.com 1194 udp
remote it-mxp.gw.openvpn.com 443 tcp
remote it-mxp.gw.openvpn.com 1194 udp
remote it-mxp.gw.openvpn.com 1194 udp
remote it-mxp.gw.openvpn.com 1194 udp
remote it-mxp.gw.openvpn.com 1194 udp
remote it-mxp.gw.openvpn.com 1194 udp
remote-cert-tls server
cipher AES-256-CBC
auth SHA256
persist-tun
nobind
verb 3
socket-flags TCP_NODELAY
<ca>
-----BEGIN CERTIFICATE-----
xxxhiddenxxx
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
xxxhiddenxxx
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN RSA PRIVATE KEY-----
xxxhiddenxxx
-----END RSA PRIVATE KEY-----
</key>
key-direction 1
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
xxxhiddenxxx
-----END OpenVPN Static key V1-----
</tls-auth>
I understand that is a problem of autentication but I don't understand how to solve it, this is the log:
Code: Select all
2021-05-24 22:10:20 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
2021-05-24 22:10:20 OpenVPN 2.5.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Apr 21 2021
2021-05-24 22:10:20 Windows version 10.0 (Windows 10 or greater) 64bit
2021-05-24 22:10:20 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10
Enter Management Password:
2021-05-24 22:10:20 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
2021-05-24 22:10:20 Need hold release from management interface, waiting...
2021-05-24 22:10:20 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
2021-05-24 22:10:20 MANAGEMENT: CMD 'state on'
2021-05-24 22:10:20 MANAGEMENT: CMD 'log all on'
2021-05-24 22:10:20 MANAGEMENT: CMD 'echo all on'
2021-05-24 22:10:20 MANAGEMENT: CMD 'bytecount 5'
2021-05-24 22:10:20 MANAGEMENT: CMD 'hold off'
2021-05-24 22:10:20 MANAGEMENT: CMD 'hold release'
2021-05-24 22:10:20 Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
2021-05-24 22:10:20 Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
2021-05-24 22:10:20 MANAGEMENT: >STATE:1621887020,RESOLVE,,,,,,
2021-05-24 22:10:20 TCP/UDP: Preserving recently used remote address: [AF_INET]45.128.37.17:1194
2021-05-24 22:10:20 Socket Buffers: R=[65536->65536] S=[65536->65536]
2021-05-24 22:10:20 NOTE: setsockopt TCP_NODELAY=1 failed
2021-05-24 22:10:20 UDP link local: (not bound)
2021-05-24 22:10:20 UDP link remote: [AF_INET]45.128.37.17:1194
2021-05-24 22:10:20 MANAGEMENT: >STATE:1621887020,WAIT,,,,,,
2021-05-24 22:10:20 MANAGEMENT: >STATE:1621887020,AUTH,,,,,,
2021-05-24 22:10:20 TLS: Initial packet from [AF_INET]45.128.37.17:1194, sid=c3398b3f d31b2431
2021-05-24 22:10:20 VERIFY OK: depth=1, CN=CloudVPN Prod CA
2021-05-24 22:10:20 VERIFY KU OK
2021-05-24 22:10:20 Validating certificate extended key usage
2021-05-24 22:10:20 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2021-05-24 22:10:20 VERIFY EKU OK
2021-05-24 22:10:20 VERIFY OK: depth=0, CN=it-mxp-dc2-b1.cloud.openvpn.net
2021-05-24 22:10:20 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2021-05-24 22:10:20 [it-mxp-dc2-b1.cloud.openvpn.net] Peer Connection Initiated with [AF_INET]45.128.37.17:1194
2021-05-24 22:10:21 MANAGEMENT: >STATE:1621887021,GET_CONFIG,,,,,,
2021-05-24 22:10:21 SENT CONTROL [it-mxp-dc2-b1.cloud.openvpn.net]: 'PUSH_REQUEST' (status=1)
2021-05-24 22:10:21 AUTH: Received control message: AUTH_FAILED,SSO Auth Failed due to lack of client support
2021-05-24 22:10:21 SIGUSR1[soft,auth-failure] received, process restarting
2021-05-24 22:10:21 MANAGEMENT: >STATE:1621887021,RECONNECTING,auth-failure,,,,,
2021-05-24 22:10:21 Restart pause, 5 second(s)
Thank you
GZ