Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
nflnetwork29
Advisor

security alert when connecting via endpoint security vpn

I am trying to locate the setting for SSL certificate in cluster XL 

we are using endpoint security for remote access vpn

the users are all seeing a "security warning" pop up box prior to connection 

 

I assume a 3rd-party SSL cert would resolve the issue . Can't find where to install the certificate on the Firewall. 

 

Any ideas?

2022-06-16_10-18-59.png

2022-06-16_10-19-11.png

0 Kudos
3 Replies
PhoneBoy
Admin
Admin

One error message is a result of the clients unable to reach the certificate revocation list, which is stored on the management server.
The other is a result of not trusting the ICA.
You can deploy the ICA to your clients as trusted via GPO to resolve this issue.
You can also add a certificate to the IPSec VPN section of the gateway object and specify which certificate is used for Remote Access here:

image.png

0 Kudos
nflnetwork29
Advisor

for the CRL issue we are using SAML authentication and Azure AD as our identify provider.  So we do not use any LDAP account Unit . Is there a workaround for this type of setup?

 

For the certificate issue how do i generate the certificate sign request (CSR) ?

0 Kudos
PhoneBoy
Admin
Admin

This is likely the CRL for the certificate used for VPN itself, which is used irrespective of the authentication method used for users.

To generate a CSR, I believe you need to import the Certificate Authority first.
Then you can use the Add button in the IPSec VPN section of the object to generate the necessary CSR.

0 Kudos