We are getting following error when accessing a server resource over SSL VPN,.
"the server certificate or its chain does not comply with FIPS....."
I did check on cisco and it says it is related to some cryptography standards. But am unable to understand in what circumstance this error can
occur, specially it is just seen and wasnt seen before accessing the same resource over ssl vpn.
I am tryin to gather more data on this error from the reported person. But that may take couple of days.
Meanwhile, will appreciate if i can get any info regarding this from any members who have faced this before.
Thanks in advance!
Solved! Go to Solution.
Seems like you are hitting this bug: CSCta18665 - Need to verify FIPS compliance for server certs on Windows platforms.
Unfortunately bug details are internal, so you might want to open a TAC case.
However, what version of AnyConnect is the user running? and I assume it's AnyConnect windows?
Thanks, however when the 2.2 client was used , the error doesnt appear.
Later learnt that the error during login( user cant login using 2.4 ver) appeared when client was 2.4 version.
any suggestions on how this is the case .
Appreciate your help!
I am experiencing the same issue now.May I know you the server of your SSL?Router or ASA.... If it's router please advise the type and IOS version.Thanks.
It was on ASA . User had somehow tried to run an upgraded version of anyconnect.
got resolved after it was downgraded to original.
let me know if you need more information to help your cause.