Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
332
Views
0
Helpful
0
Replies
Highlighted
hash2k2
Beginner
Beginner
‎06-25-2020 10:55 PM
‎06-25-2020 10:55 PM

AnyConnect - no connection - SSL lib error. Function: ssl3_get_server_certificate Reason: certificate verify failed

Yesterday I have upgraded a Cisco ASA 5525 Cluster from 9.12(3)12 to 9.14(1).

After the upgrade I was not able to connect via Cisco AnyConnect anymore.

Because of no time, I did not have enough time to troubleshoot.

Debug logs for the keyword "ssl" gave me the following output:

SSL server inside:10.29.1.4/33528 to 10.29.7.11/636 chooses cipher ECDHE-RSA-AES256-SHA384

and next line:

SSL lib error. Function: ssl3_get_server_certificate Reason: certificate verify failed

 

10.29.1.4 is our ASA, 10.29.7.11 is our domain controller, where the authenication is forwarded to.

Does anybody know something about this or can give me an advice how to solve it?

Labels:
0 Helpful
0 REPLIES 0
Latest Contents
Script to push/post all static routes on Firepower Managemen...
Created by Dv on 10-24-2020 03:07 AM
0
0
0
0
Problem: When we unregister FTD from FMC and re-register, all the static routes are lost on it. Sometimes device has database corruption, if re-image is the only solution then upon re-image, FTD comes up fresh and we need to configure everything from scra... view more
ASA 5585-X Howo change Secondary Active to Standby without R...
Created by MANFRED LIEBCHEN on 10-23-2020 01:07 AM
3
0
3
0
Hi,I have a very simple question; we have two ASA 5585-X working in Active/Standby Mode with multiuser Contexts.Normally Primary Unit is active for failover group 1 and 2; Secondary Unit is standby !At the moment our Secondary Unit is completely disconnec... view more
CCIE Security and Practical Applications in Today’s Network:...
Created by ciscomoderator on 10-22-2020 11:48 AM
0
0
0
0
Meet the Authors Event - CCIE Security and Practical Applications in Today’s Network: Zero Trust (Live event – Thursday, 29th, 2020 at 10:00 a.m. Pacific / 1:00 p.m. Eastern / 6:00 p.m. Paris) This event will have place on Thursday 29th, October 2020 at 1... view more
My company uses Microsoft Azure AD, can I sign into Cisco Se...
Created by diddly on 10-22-2020 06:34 AM
0
5
0
5
Question My company uses Microsoft Azure AD, and I sign into all my applications using that account. Can I use that account when I sign in? Answer Yes - all applications that support SecureX sign-on allow direct login with your Microsoft Azure AD accou... view more
Cisco ASA 5515-X logging
Created by LovejitSingh1313 on 10-21-2020 01:57 PM
9
0
9
0
@Rob Ingram  @balaji.bandi  @Marius Gunnerud  Hi Guys, Does ASA saves any logs by default?  logs means if some sort suspicious activity happen within  network and we want to see what Firewall saw at that time.I... view more
Content for Community-Ad