We deployed an openVPN config profile successfully since a couple of years.
Suddenly, after updating to OpenVPN Connect 3.3.0 newly installed config profiles don't work anymore. Already deployed profiles still are connecting fine to the VPN.
If I want to connect with a freshly installed profile in OpenVPN Connect nothing really happens. Not even a log entry. If I'm trying to connect via the iOS VPN toggle I'll get en error in the OpenVPN Connect log:
Code: Select all
[Aug 02, 2022, 13:26:52] NIP: OpenVPN VoD config error: Neither CertificatePayload nor cert/key values configured
[Aug 02, 2022, 13:26:52] EVENT: VOD_CONFIG_ERROR Neither CertificatePayload nor cert/key values configured [ERR]
[Aug 02, 2022, 13:26:52] EVENT: DISCONNECT_PENDING
[Aug 02, 2022, 13:26:52] Raw stats on disconnect:
[Aug 02, 2022, 13:26:52] Performance stats on disconnect:
CPU usage (microseconds): 5694
Network bytes per CPU second: 0
Tunnel bytes per CPU second: 0
[Aug 02, 2022, 13:26:52] NIP: couldn't parse VPN on Demand settings
Sidenote: If I'm importing the ovpn file directly in OpenVPN Connect through Finder, I'm able to connect
Here's the config:
Code: Select all
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1">
<dict>
<key>PayloadUUID</key>
<string>...</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadOrganization</key>
<string>MYCompany</string>
<key>PayloadIdentifier</key>
<string>...</string>
<key>PayloadDisplayName</key>
<string>OpenVPN-Configuration</string>
<key>PayloadDescription</key>
<string/>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadEnabled</key>
<true/>
<key>PayloadRemovalDisallowed</key>
<false/>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadUUID</key>
<string>...</string>
<key>PayloadType</key>
<string>com.apple.vpn.managed</string>
<key>PayloadOrganization</key>
<string>MY Company</string>
<key>PayloadIdentifier</key>
<string>....</string>
<key>PayloadDisplayName</key>
<string>com.apple.vpn.managed</string>
<key>PayloadDescription</key>
<string/>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadEnabled</key>
<true/>
<key>IPv4</key>
<dict>
<key>OverridePrimary</key>
<integer>1</integer>
</dict>
<key>Proxies</key>
<dict/>
<key>UserDefinedName</key>
<string>MY VPN CONNECTION</string>
<key>VPN</key>
<dict>
<key>RemoteAddress</key>
<string>DEFAULT</string>
<key>OnDemandUserOverrideDisabled</key>
<integer>0</integer>
<key>ExcludeLocalNetworks</key>
<integer>0</integer>
<key>AuthName</key>
<string/>
<key>ProviderDesignatedRequirement</key>
<string/>
<key>AuthenticationMethod</key>
<string>Password</string>
<key>ProviderType</key>
<string>packet-tunnel</string>
<key>IncludeAllNetworks</key>
<integer>0</integer>
</dict>
<key>VPNType</key>
<string>VPN</string>
<key>VPNSubType</key>
<string>net.openvpn.connect.app</string>
<key>VendorConfig</key>
<dict>
<key>cipher</key>
<string>AES-128-CBC</string>
<key>auth</key>
<string>SHA256</string>
<key>tls-client</key>
<string>NOARGS</string>
<key>setenv</key>
<string>CLIENT_CERT 0</string>
<key>remote-cert-tls</key>
<string>server</string>
<key>persist-key</key>
<string>NOARGS</string>
<key>key-direction</key>
<string>1</string>
<key>lport</key>
<string>0</string>
<key>remote</key>
<string>IP Port Protocol</string>
<key>tls-auth</key>
<string>-----BEGIN OpenVPN Static key V1-----\n...\n-----END OpenVPN Static key V1-----</string>
<key>vpn-on-demand</key>
<string>0</string>
<key>persist-tun</key>
<string>NOARGS</string>
<key>auth-user-pass</key>
<string>NOARGS</string>
<key>client</key>
<string>NOARGS</string>
<key>ca</key>
<string>-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----</string>
</dict>
<key>OnDemandUserOverrideDisabled</key>
<integer>0</integer>
</dict>
</array>
</dict>
</plist>
Can someone push me in the right direction to fix this?