Can’t use X.509 and Password authentication for OpenVPN.

Home Page Forums Network Management ZeroShell Can’t use X.509 and Password authentication for OpenVPN.

This topic contains 3 replies, has 0 voices, and was last updated by  TheHeroOfCanton 7 years, 11 months ago.

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • #40930

    Hello Everyone!
    Updated my install of ZeroShell to beta8, and decided to setup a VPN. I wanted to use OpenVPN to do this with X509 and Password. I followed the instructions to use the OpenVPN gui to do this on Windows.

    I exported out the cert, and added it to the config directory, but the client does not connect. The error message states something to the fact that there is no certificate (sorry, I’m at work with no access to the log file).

    Wondering if anyone saw this before, and what can be done to fix it. Using password only works great.

    Great software, am really loving using it!

    Thanks!

    http://www.zeroshell.net/eng/openvpn-client/

    #46199

    Here is part of my log file indicating the error I keep getting.

    07:43:48 Re-using SSL/TLS context
    07:43:48 LZO compression initialized
    07:43:48 TCP connection established with 172.16.1.184:4028
    07:43:48 TCPv4_SERVER link local: [undef]
    07:43:48 TCPv4_SERVER link remote: 172.16.1.184:4028
    07:43:48 172.16.1.184:4028 TLS_ERROR: BIO read tls_read_plaintext error: error:140890C7:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate
    07:43:48 172.16.1.184:4028 TLS Error: TLS object -> incoming plaintext read error
    07:43:48 172.16.1.184:4028 TLS Error: TLS handshake failed
    07:43:48 172.16.1.184:4028 Fatal TLS error (check_tls_errors_co), restarting

    #46200

    I am getting the same error in Beta 8. Anyone have any ideas?

    thanks

    @theheroofcanton wrote:

    Here is part of my log file indicating the error I keep getting.

    07:43:48 Re-using SSL/TLS context
    07:43:48 LZO compression initialized
    07:43:48 TCP connection established with 172.16.1.184:4028
    07:43:48 TCPv4_SERVER link local: [undef]
    07:43:48 TCPv4_SERVER link remote: 172.16.1.184:4028
    07:43:48 172.16.1.184:4028 TLS_ERROR: BIO read tls_read_plaintext error: error:140890C7:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate
    07:43:48 172.16.1.184:4028 TLS Error: TLS object -> incoming plaintext read error
    07:43:48 172.16.1.184:4028 TLS Error: TLS handshake failed
    07:43:48 172.16.1.184:4028 Fatal TLS error (check_tls_errors_co), restarting

    #46201

    joar
    Member

    Have used it with and without user certs and both works ok. No problems at all.

    #46202

    bozallen
    Member

    Sorry for bring up this old thread, but I have the same issue, using 1.0beta13. Was there ever a resolution?

Viewing 5 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic.