Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

VPN3030 - No Group found by matching IP Address of Cert Peer

Hi,

The above error message keeps on appearing in the syslog everytime a user logs in(in fact, its the very first message of every login). I have checked my group matching configuration and confirmed that I only asked to obtain group from the OU and not to match any IP address. Does anybody knows why and how it can be stopped?

TIA!

1 REPLY
Bronze

Re: VPN3030 - No Group found by matching IP Address of Cert Peer

I believe that this message is occuring because when a client comes in to the concentrator, it starts looking at the matching criteria in order. The IP address criteria is the first one it checks, so if you do not have that criteria checked when configuring the certificate it will give the message that you included. This URL should assist you more http://www.cisco.com/warp/public/471/vpn3k-cert-match.html.

146
Views
0
Helpful
1
Replies
CreatePlease to create content