Hi Guys,
I have been trying to use Cisco AnyConnect VPN of late.
However,I have run into a strange problem on account of which I have been unable to connect to 64bit Ubuntu Linux.
The error is shown below.
This looks like a Cisco client related issue.
During an attempt to connect I encounter the following error “Connection attempt has failed due to server certificate problem.”
Kindly help!
Connection attempt has failed due to server certificate problem
Hello Christopher,
Try the following workaround and see if it will help fix the issue:
-
You will need to do a fresh installation of 12.04 LTS 32bit using Firefox 12).
-
After that you will need to install the AnyConnect client and then try running it.
-
You may get the following error message:
AnyConnect cannot confirm it is connected to your secure gateway. The local network may not be trustworthy. Please try another network.
-
If you do, you will need to check the syslog in Ubuntu. You'll get stuff like the following:
CERTSTORE_ERROR_CERT_NOT_FOUND The /opt/.cisco/certificates/ca/ directory was not found
Created /.cisco/certificates/ca directories in /opt using sudo
cd /opt
sudo mkdir .cisco
cd .cisco/
sudo mkdir certificates
cd certificates/
sudo mkdir ca
-
You will need to copy all the Globalsign .pem files from /etc/ssl/certs. In case you do not know your provider, you could just copy everything.
sudo cp /etc/ssl/certs/Global* /opt/.cisco/certificates/ca
sudo cp /etc/ssl/certs/cd /etc/ssl/cert/* /opt/.cisco/certificates/ca
-
After that you can start the AnyConnect client and connect to the VPN.
Hope this helps.
Regards,
Carl
Connection attempt has failed due to server certificate problem
The error seems that it requires several shared libraries. In the default installation, shared library requirements are missing. To fix this, run these commands:
$ sudo apt-get install libnss3-1d
This also needs Firefox profile to be installed because it includes some new certificate information needed by the machine. Execute the following command from the user’s home directory:
$ mkdir -p .mozilla /firefox /anything.default
Remember not to run VPN as root, run it as normal user instead. After doing these steps, the error should now be gone.
