OpenVPN and certificate

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
doc
Posts: 1
Joined: Tue May 21, 2019 4:14 pm

OpenVPN and certificate

Post by doc » Tue May 21, 2019 4:22 pm

Hi,

I'm trying to configure OpenVPN to connect to SoftEther server with certificate but it not works:

ovpn file:

Code: Select all

dev tun
proto udp
remote xx.xx.xx.xx 1194
cipher AES-128-CBC
auth SHA1
resolv-retry infinité
bobine
persist-key
persist-tun
client
verb 3
key user1.key
cert user1.crt

<ca>
...
</ca>

<cert>
...
</cert>

<key>
...
</key>
logfile:

Code: Select all

Tue May 21 18:06:09 2019 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Tue May 21 18:06:09 2019 Windows version 6.2 (Windows 8 or greater) 64bit
Tue May 21 18:06:09 2019 library versions: OpenSSL 1.0.2l  25 May 2017, LZO 2.10
Enter Management Password:
Tue May 21 18:06:09 2019 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Tue May 21 18:06:09 2019 Need hold release from management interface, waiting...
Tue May 21 18:06:09 2019 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Tue May 21 18:06:09 2019 MANAGEMENT: CMD 'state on'
Tue May 21 18:06:09 2019 MANAGEMENT: CMD 'log all on'
Tue May 21 18:06:09 2019 MANAGEMENT: CMD 'echo all on'
Tue May 21 18:06:09 2019 MANAGEMENT: CMD 'hold off'
Tue May 21 18:06:09 2019 MANAGEMENT: CMD 'hold release'
Tue May 21 18:06:09 2019 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 21 18:06:09 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]xx.xx.xx.xx:1194
Tue May 21 18:06:09 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 21 18:06:09 2019 UDP link local: (not bound)
Tue May 21 18:06:09 2019 UDP link remote: [AF_INET]xx.xx.xx.xx:1194
Tue May 21 18:06:09 2019 MANAGEMENT: >STATE:1558454769,WAIT,,,,,,
Tue May 21 18:06:09 2019 MANAGEMENT: >STATE:1558454769,AUTH,,,,,,
Tue May 21 18:06:09 2019 TLS: Initial packet from [AF_INET]xx.xx.xx.xx:1194, sid=1ffc44a1 b9e26d39
Tue May 21 18:06:10 2019 VERIFY OK: depth=0, CN=xxx.softether.net, O=xxx.softether.net, OU=xxx.softether.net, C=US
Tue May 21 18:06:10 2019 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
Tue May 21 18:06:10 2019 [xxx.softether.net] Peer Connection Initiated with [AF_INET]xx.xx.xx.xx:1194
Tue May 21 18:06:11 2019 MANAGEMENT: >STATE:1558454771,GET_CONFIG,,,,,,
Tue May 21 18:06:11 2019 SENT CONTROL [xxx.softether.net]: 'PUSH_REQUEST' (status=1)
Tue May 21 18:06:11 2019 AUTH: Received control message: AUTH_FAILED
Tue May 21 18:06:11 2019 SIGUSR1[soft,auth-failure] received, process restarting
Tue May 21 18:06:11 2019 MANAGEMENT: >STATE:1558454771,RECONNECTING,auth-failure,,,,,
Tue May 21 18:06:11 2019 Restart pause, 5 second(s)
Is anyone make it works ??

Thank you.

thisjun
Posts: 2433
Joined: Mon Feb 24, 2014 11:03 am

Re: OpenVPN and certificate

Post by thisjun » Tue Jun 11, 2019 7:42 am

SoftEther VPN Server doesn't support cert auth on OpenVPN.

Post Reply