Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5140
Views
0
Helpful
4
Replies

No profile available for host

ColinSutton11454
Level 1
Level 1

‎03-10-2020 10:27 AM

I have just installed AnyConnect 4.8.01090 and my organisation's  VPN certificate on my iMac running Catalina 10.15.3,

When I try to connect I get the message 'Certificate Validation failure'.

The system log shows :

default 03:57:53.304337+1100 Cisco AnyConnect Secure Mobility Client Function: getUserName File: ../../vpn/Api/CTransportCurlStatic.cpp Line: 2604 PasswordEntry username is colin
default 03:57:53.333496+1100 Cisco AnyConnect Secure Mobility Client Function: PeerCertVerifyCB File: ../../vpn/Api/CTransportCurlStatic.cpp Line: 998 Return success from VerifyServerCertificate
default 03:57:53.338350+1100 Cisco AnyConnect Secure Mobility Client Function: ClientCertSetCB File: ../../vpn/Api/CTransportCurlStatic.cpp Line: 1104 Client certificate requested by peer
default 03:57:53.425563+1100 Cisco AnyConnect Secure Mobility Client Function: processResponseStringFromSG File: ../../vpn/Api/ConnectMgr.cpp Line: 12155 Client certificate requested by peer (via AggAuth)
default 03:57:53.425620+1100 Cisco AnyConnect Secure Mobility Client Function: getProfileNameFromHost File: ../../vpn/Api/ProfileMgr.cpp Line: 1256 No profile available for host ctcvpn.ctc.usyd.edu.au.
default 03:57:53.425647+1100 Cisco AnyConnect Secure Mobility Client Function: getHostInitSettings File: ../../vpn/Api/ProfileMgr.cpp Line: 1340 Profile () not found. Using default settings.
error 03:57:53.425663+1100 Cisco AnyConnect Secure Mobility Client Function: certAuthHasFailed File: ../../vpn/Api/ConnectMgr.cpp Line: 16802 Certificate authentication requested from gateway, no valid certs found in users cert store.
default 03:57:53.425678+1100 Cisco AnyConnect Secure Mobility Client Message type warning sent to the user: No valid certificates available for authentication.

 

What do I need?

1 person had this problem
Labels:
0 Helpful
4 Replies 4

Sheraz.Salim
VIP Alumni
VIP Alumni

‎03-10-2020 11:44 AM

logs show No valid certificates available for authentication.

a very similar issue is discussed here and here 

please do not forget to rate.
0 Helpful

ColinSutton11454
Level 1
Level 1
In response to Sheraz.Salim

‎03-10-2020 01:56 PM

Neither of those links seem relevant to connection to MacOS

0 Helpful

ColinSutton11454
Level 1
Level 1
In response to Sheraz.Salim

‎03-10-2020 06:26 PM

@Sheraz.Salim I followed the instructions in the first link to set <ExcludeMacNativeCertStore> to true, now get different error messages:

default 10:22:51.291804+1100 Cisco AnyConnect Secure Mobility Client Using default preferences. Some settings (e.g. certificate matching) may not function as expected if a local profile is expected to be used. Verify that the selected host is in the server list section of the profile and that the profile is configured on the secure gateway.
default 10:22:51.292224+1100 Cisco AnyConnect Secure Mobility Client Function: getProfileNameFromHost File: ../../vpn/Api/ProfileMgr.cpp Line: 1256 No profile available for host [###########]
default 10:22:51.292249+1100 Cisco AnyConnect Secure Mobility Client Function: getHostInitSettings File: ../../vpn/Api/ProfileMgr.cpp Line: 1340 Profile () not found. Using default settings.
default 10:22:51.292331+1100 Cisco AnyConnect Secure Mobility Client Message type information sent to the user: 
 
The sources in the second link from @jim.rice are not available to me.

 

0 Helpful
Customers Also Viewed These Support Documents