Connection attempt has failed due to server certificate problem

Asked By Christopher L Keaton 0 points N/A Posted on - 09/03/2012

Hi Guys,

I have been trying to use Cisco AnyConnect VPN of late.

However,I have run into a strange problem on account of which I have been unable to connect to 64bit Ubuntu Linux.

The error is shown below.

This looks like a Cisco client related issue.

During an attempt to connect I encounter the following error “Connection attempt has failed due to server certificate problem.”

Kindly help!

• Status: Open
• Question Views: 5741
• Answer Count: 2
• Vote Up 0 Vote Down

• Answer Accepted: Yes
• Question Category: Network Management

Best Answer by Carl Jack

Go To Solution

Best Answer

Best Answer

Answered By Carl Jack 10 points N/A #134894

Connection attempt has failed due to server certificate problem

Hello Christopher,

Try the following workaround and see if it will help fix the issue:

• You will need to do a fresh installation of 12.04 LTS 32bit  using Firefox 12).
• After that you will need to install the AnyConnect client and then try running it.
• You may get the following error message:

AnyConnect cannot confirm it is connected to your secure gateway. The local network may not be trustworthy. Please try another network.

• If you do, you will need to check the syslog in Ubuntu.  You'll get stuff like the following:

CERTSTORE_ERROR_CERT_NOT_FOUND The /opt/.cisco/certificates/ca/ directory was not found

Created /.cisco/certificates/ca directories in /opt using sudo

cd /opt
sudo mkdir .cisco
cd .cisco/
sudo mkdir certificates
cd certificates/
sudo mkdir ca

• You will need to copy all the Globalsign .pem files from /etc/ssl/certs. In case you do not know your provider, you could just copy everything.

sudo cp /etc/ssl/certs/Global* /opt/.cisco/certificates/ca

• or in case CA is unknown

sudo cp /etc/ssl/certs/cd /etc/ssl/cert/* /opt/.cisco/certificates/ca

• After that you can start the AnyConnect client and connect to the VPN.

Hope this helps.

Regards,

Carl

 

About Carl Jack

Questions
1

Answers
1657

Best Answers
417

• Vote Up 0 Vote Down

• Posted on - 09/04/2012
• Question Category: Network Management

Answered By Felipa Dolore 20 points N/A #196645

Connection attempt has failed due to server certificate problem

The error seems that it requires several shared libraries. In the default installation, shared library requirements are missing. To fix this, run these commands:

 

$ sudo apt-get install libnss3-1d

 

This also needs Firefox profile to be installed because it includes some new certificate information needed by the machine. Execute the following command from the user’s home directory:

 

$ mkdir -p .mozilla /firefox /anything.default

 

Remember not to run VPN as root, run it as normal user instead. After doing these steps, the error should now be gone.

About Felipa Dolore

Questions
0

Answers
100

Best Answers
48

• Vote Up 0 Vote Down

• Posted on - 11/27/2013
• Question Category: Network Management