Connection attempt has failed due to server certificate problem

Asked By 0 points N/A Posted on -

Hi Guys,

I have been trying to use Cisco AnyConnect VPN of late.

However,I have run into a strange problem on account of which I have been unable to connect to 64bit Ubuntu Linux.

The error is shown below.

This looks like a Cisco client related issue.

During an attempt to connect I encounter the following error “Connection attempt has failed due to server certificate problem.”

Kindly help!

Best Answer by Carl Jack
Best Answer
Best Answer
Answered By 0 points N/A #134894

Connection attempt has failed due to server certificate problem


Hello Christopher,

Try the following workaround and see if it will help fix the issue:

  • You will need to do a fresh installation of 12.04 LTS 32bit  using Firefox 12).
  • After that you will need to install the AnyConnect client and then try running it.
  • You may get the following error message:

AnyConnect cannot confirm it is connected to your secure gateway. The local network may not be trustworthy. Please try another network.

  • If you do, you will need to check the syslog in Ubuntu.  You'll get stuff like the following:
CERTSTORE_ERROR_CERT_NOT_FOUND The /opt/.cisco/certificates/ca/ directory was not found

Created /.cisco/certificates/ca directories in /opt using sudo

cd /opt
sudo mkdir .cisco
cd .cisco/
sudo mkdir certificates
cd certificates/
sudo mkdir ca
  • You will need to copy all the Globalsign .pem files from /etc/ssl/certs. In case you do not know your provider, you could just copy everything.
sudo cp /etc/ssl/certs/Global* /opt/.cisco/certificates/ca
  • or in case CA is unknown
sudo cp /etc/ssl/certs/cd /etc/ssl/cert/* /opt/.cisco/certificates/ca
  • After that you can start the AnyConnect client and connect to the VPN.

Hope this helps.




Answered By 15 points N/A #196645

Connection attempt has failed due to server certificate problem

The error seems that it requires several shared libraries. In the default installation, shared library requirements are missing. To fix this, run these commands:
$ sudo apt-get install libnss3-1d
This also needs Firefox profile to be installed because it includes some new certificate information needed by the machine. Execute the following command from the user’s home directory:
$ mkdir -p .mozilla /firefox /anything.default
Remember not to run VPN as root, run it as normal user instead. After doing these steps, the error should now be gone.

Login/Register to Answer

Related Questions