VPN Client Cert Chain Issues

Unanswered Question
Jul 4th, 2008
User Badges:

I am attempting to setup a VPN connection on a new computer. This connection currently works fine on another machine. I have installed the Root Cert chain and my personal cert as before and it fails to connect. I have included my log file below. The cert shows as valid so I am unsure what I have done wrong. I have done this for other machines and it has worked fine. Any help would be appreciated!


Thank you

Karl


Cisco Systems VPN Client Version 4.8.01.0300

Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.

Client Type(s): Windows, WinNT

Running on: 5.1.2600 Service Pack 3


109 10:24:39.791 07/04/08 Sev=Info/6 CERT/0x63600025

Attempting to find a Certificate using Serial Hash.


110 10:24:39.791 07/04/08 Sev=Info/6 CERT/0x63600026

Found a Certificate using Serial Hash.


111 10:24:39.791 07/04/08 Sev=Info/6 CERT/0x63600025

Attempting to find a Certificate using Serial Hash.


112 10:24:39.791 07/04/08 Sev=Info/6 CERT/0x63600026

Found a Certificate using Serial Hash.


113 10:24:39.791 07/04/08 Sev=Info/6 CERT/0x63600025

Attempting to find a Certificate using Serial Hash.


114 10:24:39.791 07/04/08 Sev=Info/6 CERT/0x63600026

Found a Certificate using Serial Hash.


115 10:24:39.870 07/04/08 Sev=Info/4 CERT/0x63600015

Cert (cn=XXXXXXXXXXXXXX,ou=CSADMIN,dc=secure,dc=XXXXXXXXXXXX,dc=com) verification succeeded.


116 10:24:40.901 07/04/08 Sev=Info/6 CERT/0x63600025

Attempting to find a Certificate using Serial Hash.


117 10:24:40.901 07/04/08 Sev=Info/6 CERT/0x63600026

Found a Certificate using Serial Hash.


118 10:24:41.135 07/04/08 Sev=Info/4 CERT/0x6360001B

No smart card readers with cards inserted found.


119 10:24:41.432 07/04/08 Sev=Warning/2 CERT/0xE360003E

Cert chain missing or intermediate CA signature failed - Cert verification failed.


120 10:24:41.432 07/04/08 Sev=Warning/2 IKE/0xE3000097

Unable to validate peer certificate, Common Name co-sec-vpn01.ou=secure.ou=XXXXXXXXXXXX.o=com., Issuer cn=CPI,dc=secure,dc=XXXXXXXXXXX,dc=com, (CertCfg:241).


121 10:24:41.432 07/04/08 Sev=Warning/2 IKE/0xE300009B

Failed to process MM Msg 6 (NavigatorMM:570)


122 10:24:41.432 07/04/08 Sev=Warning/2 IKE/0xE30000A7

Unexpected SW error occurred while processing Identity Protection (Main Mode) negotiator:(Navigator:2237)


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
mchin345 Thu, 07/10/2008 - 06:32
User Badges:
  • Silver, 250 points or more

VPN connection was not established because of an unrecognized reason. Please check the logs for details. Better solution is Install an Identity Cert that is not chained.


Actions

This Discussion