cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1542
Views
5
Helpful
3
Replies

anyconnect client

alexman1
Level 1
Level 1

Hello,

I use Anyconnect from my laptop to connect to RV345 router ( using the group authentication with pre-shared key - username and password)-so certificate option from client to site remain unchecked. The problem is I cannot connect it because anyconnect send me a security warning about  "Untrusted Server Certificate(Anyconnect cannot verify server...)", and then I get "Connection attempt failed,try again...

How can I disable this warning and what protocol should I choose in profile editor?

In Anyconnect/Advance settings/preferences  I've unchecked "Block connections to untrusted servers".

I've also tried with all kinds of EAP, but I get the same failed.

From mobile if I disable the certificate, and choose EAP-anyconnect,it works perfectly.

1 Accepted Solution

Accepted Solutions

I’m sorry there’s a misunderstanding.
I’m not talking about user authentication but the certificate used on port https. When connection to your sslvpn, AnyConnect reach your RV on port https. To avoid this error message, you need to put a public certificate trusted by users even if user authenticates using a password.
You can look at the documentation how to configure the sslvpn certificate.
I’m not very familiar as i said previously and I’m sure you have a how to configuring l2tpv on the documentation.

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

View solution in original post

3 Replies 3

Francesco Molino
VIP Alumni
VIP Alumni
Hi

I’m not very familiar with RV models but when you get untrusted server message, it means the certificate showed by the firewall isn’ta public trusted certificate (not signed by a public trusted pki). Have you imported a public signed cert? If you don’t have any, go check let’s encrypt, you can get a free public cert that will need to be renewed every 3 months.
After that if you get connection attempt failed, you probably have another issue in your VPN configuration on the RV. Can you export some logs to see what’s happening?

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

rv345.pngI don't want to use a certificate,only user and password. I expected RV345 not to ask about certificate if this option wasn't choosen. I don't find logs in anyconnect, but from the message history I can see only it try to connect, then attempt failed, then try again. In RV345 I I cannot get the logs remotely,but I will try somehow. Do you know how to configure L2tp corectly in RV345? Maybe I was wrong something. PPTP work ok and without any warnings..

vpn client.pngwarning.png

I’m sorry there’s a misunderstanding.
I’m not talking about user authentication but the certificate used on port https. When connection to your sslvpn, AnyConnect reach your RV on port https. To avoid this error message, you need to put a public certificate trusted by users even if user authenticates using a password.
You can look at the documentation how to configure the sslvpn certificate.
I’m not very familiar as i said previously and I’m sure you have a how to configuring l2tpv on the documentation.

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question