Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

SSL VPN error

Hello folks,

We are getting following error when accessing a server resource over SSL VPN,.

"the server certificate or its chain does not comply with FIPS....."

I did check on cisco and it says it is related to some cryptography standards. But am unable to understand in what circumstance this error can

occur, specially it is just seen and wasnt seen before accessing the same resource over ssl vpn.

I am tryin to gather more data on this error from the reported person. But that may take couple of days.

Meanwhile, will appreciate if i can get any info regarding this from any members who have faced this before.

Thanks in advance!

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: SSL VPN error

2.3, 2.4 and 2.5 are listed as affected. Just double check that 2.2 is not listed in the bug. You might want to downgrade to 2.2 if that is not giving you the error.

Which 2.4 version in particular did you use?

9 REPLIES
Cisco Employee

Re: SSL VPN error

Seems like you are hitting this bug: CSCta18665 - Need to verify FIPS compliance for server certs on Windows platforms.

Unfortunately bug details are internal, so you might want to open a TAC case.

However, what version of AnyConnect is the user running? and I assume it's AnyConnect windows?

New Member

Re: SSL VPN error

anyconnect vpn client verison being used is 2.2.0136.

Does this cause any issues?

Cisco Employee

Re: SSL VPN error

Yes, version 2.2 is affected.

Please upgrade it to the latest version of 2.4.1012

New Member

Re: SSL VPN error

Thanks, however when the 2.2 client was used , the error doesnt appear.

Later learnt that the error during login( user cant login using 2.4 ver) appeared when client was 2.4 version.

any suggestions on how this is the case .

Appreciate your help!

Cisco Employee

Re: SSL VPN error

2.3, 2.4 and 2.5 are listed as affected. Just double check that 2.2 is not listed in the bug. You might want to downgrade to 2.2 if that is not giving you the error.

Which 2.4 version in particular did you use?

New Member

Re: SSL VPN error

thanks,this got solved, i asked the user to reinstall to older 2.2 ver and it works fine.

Appreciate your assistance!

New Member

Re: SSL VPN error

Hello Suthomas,

I am experiencing the same issue now.May I know you the server of your SSL?Router or ASA....    If it's router please advise the type and IOS version.Thanks.

New Member

Re: SSL VPN error

It was on ASA . User had somehow tried to run an upgraded version of anyconnect.

got resolved after it was downgraded to original.

let me know if you need more information to help your cause.

New Member

Re: SSL VPN error

Hi,

My equitment is routers.I tried to test with cisco 2611/3745/2811.However got the same error.Do you have any suggestion?Thanks.

2036
Views
3
Helpful
9
Replies
CreatePlease login to create content