IOS 12.1.1 Connection Error X509
Posted: Wed Jan 23, 2019 5:43 pm
Hi,
i´m VPN noop, so please be patient with me. After Googling 1 Hour without any solution i´m here to ask for help please ....
I use OpenVPN from my Win PC to my company. works great.. Then i copied the config Files to IOS 12.1.1 (IPAD 11)
I have three VPN Profiles (two to a linus machine) one to a win Server.
the Linux Connection works fine, but the Win Connection makes trouble.
From my Win PC it´s ok, but for IOS not, so i copied the certificates inline in the config File
My .ovpn File :
dev tun
persist-tun
persist-key
cipher AES-256-CBC
ncp-ciphers AES-256-CBC:AES-256-GCM
auth SHA512
tls-client
client
resolv-retry infinite
remote xx.xx.xx.xx 1194 udp
verify-x509-name "pfsense-cert" name
auth-user-pass
pkcs12 pfSense-UDP4-1194-IPAD.ovpn12
tls-auth pfSense-UDP4-1194-tls.key 1
remote-cert-tls server
<ca>
-----BEGIN CERTIFICATE-----
MIIDLzCCAhegAwIBAgIJALZArQiODpsHMA0GCSqGSIb3DQEBDQUAMBQxEjAQBgNV
...
xlDwBa08vlwB+V/gswYSrXQth/d0wdt5ol/TdBbf2x4PHs5cibIZekoAcCNvUPO/
0xRu
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
MIIDRDCCAiygAwIBAgIQamJKMCyFw5n0Qs4TIJN36jANBgkqhkiG9w0BAQ0FADAU
...
ToeLccfZ5Ob7q9UekXi/xZYwGV5KY+BUrGguzyXcug2LTmsnz4rLqfOtabicDWTK
N5QetB7u5Lepes4ZQf8D0FzAgL/wmXWk
-----END CERTIFICATE-----
</cert>
The Error is: mbed TLS: SSL read error : X509 Certificate verification failed...
What can I do ?
Thanks!
Marco
i´m VPN noop, so please be patient with me. After Googling 1 Hour without any solution i´m here to ask for help please ....
I use OpenVPN from my Win PC to my company. works great.. Then i copied the config Files to IOS 12.1.1 (IPAD 11)
I have three VPN Profiles (two to a linus machine) one to a win Server.
the Linux Connection works fine, but the Win Connection makes trouble.
From my Win PC it´s ok, but for IOS not, so i copied the certificates inline in the config File
My .ovpn File :
dev tun
persist-tun
persist-key
cipher AES-256-CBC
ncp-ciphers AES-256-CBC:AES-256-GCM
auth SHA512
tls-client
client
resolv-retry infinite
remote xx.xx.xx.xx 1194 udp
verify-x509-name "pfsense-cert" name
auth-user-pass
pkcs12 pfSense-UDP4-1194-IPAD.ovpn12
tls-auth pfSense-UDP4-1194-tls.key 1
remote-cert-tls server
<ca>
-----BEGIN CERTIFICATE-----
MIIDLzCCAhegAwIBAgIJALZArQiODpsHMA0GCSqGSIb3DQEBDQUAMBQxEjAQBgNV
...
xlDwBa08vlwB+V/gswYSrXQth/d0wdt5ol/TdBbf2x4PHs5cibIZekoAcCNvUPO/
0xRu
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
MIIDRDCCAiygAwIBAgIQamJKMCyFw5n0Qs4TIJN36jANBgkqhkiG9w0BAQ0FADAU
...
ToeLccfZ5Ob7q9UekXi/xZYwGV5KY+BUrGguzyXcug2LTmsnz4rLqfOtabicDWTK
N5QetB7u5Lepes4ZQf8D0FzAgL/wmXWk
-----END CERTIFICATE-----
</cert>
The Error is: mbed TLS: SSL read error : X509 Certificate verification failed...
What can I do ?
Thanks!
Marco