ios error - PolarSSL: SSL read error : X509 - Certificate verification failed

[dennyxx82]

I've an openvpn server on vps, i connect it from 2 lan, but when i try to connect at this openvpn server from iphone, that refuse connection.

i've installed ios 10 beta 2, but same error with ios 9.3

log

Code: Select all

2016-07-26 15:50:14 UNUSED OPTIONS
5 [resolv-retry] [infinite] 
6 [nobind] 
7 [persist-key] 
8 [persist-tun] 
14 [verb] [3] 

2016-07-26 15:50:14 EVENT: RESOLVE
2016-07-26 15:50:14 Contacting 89.46.73.XXX:1194 via TCP
2016-07-26 15:50:14 EVENT: WAIT
2016-07-26 15:50:14 SetTunnelSocket returned 1
2016-07-26 15:50:15 Connecting to [89.46.73.XXX]:1194 (89.46.73.XXX) via TCPv4
2016-07-26 15:50:15 EVENT: CONNECTING
2016-07-26 15:50:15 Tunnel Options:V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client
2016-07-26 15:50:15 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 1.0.7-199
IV_VER=3.0.11
IV_PLAT=ios
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
IV_LZO=1

2016-07-26 15:50:15 VERIFY FAIL CERT_NOT_TRUSTED : depth=0
cert. version    : 3
serial number    : 01
issuer name      : C=IT, ST=CS, L=CORIGLIANO, O=CDN, OU=MyOrganizationalUnit, CN=CDN CA, ??=EasyRSA, emailAddress=me@myhost.mydomain
subject name      : C=IT, ST=CS, L=CORIGLIANO, O=CDN, OU=MyOrganizationalUnit, CN=vps, ??=EasyRSA, emailAddress=me@myhost.mydomain
issued  on        : 2016-07-25 21:25:22
expires on        : 2026-07-23 21:25:22
signed using      : RSA with SHA-256
RSA key size      : 2048 bits
basic constraints : CA=false
subject alt name  : vps
cert. type        : SSL Server
key usage        : Digital Signature, Key Encipherment
ext key usage    : TLS Web Server Authentication

2016-07-26 15:50:15 Transport Error: PolarSSL: SSL read error : X509 - Certificate verification failed, e.g. CRL, CA or signature check failed
2016-07-26 15:50:15 EVENT: CERT_VERIFY_FAIL PolarSSL: SSL read error : X509 - Certificate verification failed, e.g. CRL, CA or signature check failed [ERR]
2016-07-26 15:50:15 EVENT: DISCONNECTED
2016-07-26 15:50:15 Raw stats on disconnect:
 BYTES_IN : 3801
 BYTES_OUT : 268
 PACKETS_IN : 5
 PACKETS_OUT : 5
 SSL_ERROR : 1
 CERT_VERIFY_FAIL : 1
2016-07-26 15:50:15 Performance stats on disconnect:
 CPU usage (microseconds): 25952
 Network bytes per CPU second: 156789
 Tunnel bytes per CPU second: 0
2016-07-26 15:50:15 EVENT: DISCONNECT_PENDING
2016-07-26 15:50:15 ----- OpenVPN Stop -----

can help me!!!

[TinCanTech]

2016-07-26 15:50:15 VERIFY FAIL CERT_NOT_TRUSTED : depth=0

Did you install the correct certs to your device ?

[dennyxx82]

i send certificate from mail and from itunes, but don't work

yesterday i've upgrade openvpn at last version and it's work, but another client (router asus and workstation with tunnelblick) don't work, then i downgrade openvpn server. i would connect to openvpn server with all my client.