Virtualization, Servers and Storage : Certificate verify failed error when connecting to the ITS Private Cloud VPN (VSS VPN)

 Problem

VPN connection is unsuccessful with error certificate verify failed.

VERIFY ERROR: depth=0, error=CA signature digest algorithm too weak: C=CA, ST=ON, L=Toronto, O=VSS-HIG-EIS-UToronto, CN=VGW, emailAddress=ovpn-contact@eis.utoronto.ca, serial=1
OpenSSL: error:0A000086:SSL routines::certificate verify failed
TLS_ERROR: BIO read tls_read_plaintext error
TLS Error: TLS object -> incoming plaintext read error
TLS Error: TLS handshake failed
SIGUSR1[soft,tls-error] received, process restarting

 Solution

Make sure that you have fetched the Unified VPN profile

1. Go to: https://vskey-vn.eis.utoronto.ca/openvpn/unified/ AUTH REQUIRED

2. Fill out your VSS username.

3. Click on “Send”

4. Install the OpenVPN profile as usual.

 Related articles

• Page:
  Missing child element 'VirtualHardwareSection' when importing a virtual machine via OVA/OVF
• Page:
  How-to Troubleshoot Ubuntu Pro
• Page:
  UTORrecover NetWorker: Backup fails with error "cannot stat: Input/output error"
• Page:
  UTORrecover NetWorker: Fixing inconsistent NSR peer information
• Page:
  UTORrecover NetWorker: Port mapper failure - Timed out