Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
855
Views
0
Helpful
3
Replies

How to configure RV042 with SHREW Soft certificate

h.dam
Level 1
Level 1

‎02-13-2015 08:35 AM

Hi,

I use Shrew soft vpn client to connect to RV042 in Client access gateway. I'm using PSK for authentication which works great. But I found that there are Client certificate File/Server certificate File cases in Shrew soft authentification part. So its possible to use certificate if I'm right.

On the RV042 side, for Client access gateway (group) mode, I cannot find out this option. What I see is certificates only used for QuickVPN mode.

 

My question is: Is it possible to configure RV042 in Client access gateway mode and mount the vpn tunnel by using Shrew soft with client certificate file? If yes, how?

Thanks for your answer.

 

Regards,

hdam

 

Labels:
0 Helpful
3 Replies 3

Michal Bruncko
Level 4
Level 4

‎02-17-2015 08:09 AM

Hi hdam

please follow instructions mentioned here. There is good description how to configure it. Basically firstly generate new certificate, and follow with "Export to Client" button. You will get certificate which you import into ShrewSoft VPN.

michal

0 Helpful

h.dam
Level 1
Level 1
In response to Michal Bruncko

‎02-18-2015 12:08 PM

Hi michal,

What you showed me is VPN client access mode in RV042. I used the QuickVPN client to mount VPN tunnel successfully with certificate.

My question is for the VPN Client to Gateway mode, is it possible to authenticate with certificate file using SHREW soft ? how ?

 

Regards,

hdam

0 Helpful

Michal Bruncko
Level 4
Level 4
In response to h.dam

‎02-27-2015 03:15 PM

Yes, you're right and sorry for that. According available configuration option for VPN Client to Gateway for both Tunnel and Group options it does not seem possible to use certificate. Certificate (RSA) authentication is alternative to Group (PSK) authentication and they both can't be combined together. And for Tunnel VPN option there is possible only to configure IKE with PSK.
You said that with QuickVPN you can use certificates, this points me to option with using Shrew Soft connecting with QickVPN-like style of VPN. Yes it could be possible, because QuickVPN is just classic IPSec tunnel with additional username/password authentication over HTTPS. This means that there is small chance to make it work. But I never tested and never will be because I am not owner of this RV042 router. For example in knowledge base article there is one screenshot of Shrew Soft client configuration with defined RV042 client certificate (coincidence? or could really work? I don't know).

I would suggest to:

  • keep your Shrewsoft settings currently used for "Client to Gateway" VPN, but
  • try to use "Mutual RSA" instead as authentication method
  • and provide client certificate (certificate exported like I already said in first message)
  • and try to connect.
0 Helpful
Customers Also Viewed These Support Documents