Home » Kerio User Forums » Kerio Control » VPN client on Linux (Fedora) (Problems with connecting to VPN server from Linux)

Messages: 3

Karma: 1
Send a private message to this user

I've downloaded latest "kerio-control-vpnclient-7.2.0-3028-linux.deb", and I've extracted the package:

# ar x kerio-control-vpnclient-7.2.0-3028-linux.deb
# tar -xvzf data.tar.gz

I've put all the libraries in /usr/lib and binary in /usr/sbin, init script to /etc/init.d.

I can manage to start the kerio, but here is a problem from logs:
==> error.log <==
[10/Oct/2011 15:12:00] libVPN: Connection to peer with specified certificate was denied(199)

Here is my /etc/kerio-kvc.conf:
    <connection type="persistent">

I don't know what should I put in the <fingerprint> as value?

[Updated on: Mon, 10 October 2011 15:16]


Messages: 3

Karma: 1
Send a private message to this user
In debug.log I can see this:
[10/Oct/2011 15:20:49] {engine} CheckCertificate - remote endpoint's certificate fingerprint does not match.
[10/Oct/2011 15:20:49] {engine} Callback StatusChanged called from libVpn(deny).
[10/Oct/2011 15:20:49] {engine} VpnFSM: Saving and sending status to Engine (error).

I've added fingerprint of the certificate from the server config, but still no luck...

Messages: 1
Karma: 0
Send a private message to this user

I see that this post is old date, but I try to answer for people who find this thread cos have the same problem (like me).

1, If You have self signed cert you need add CA to trusted on your PC. For Debs like:
Save CA to /usr/share/ca-certificates/kerio/your_cacert.crt.
Run "dpkg-reconfigure ca-certificates" and add your certificate.

2, Check if Your fingerprint variable is setup properly.

echo ${FINGERPRINT} -> What is the result? Is it the same like other people (e.g. on Windows)?

If not, so You need to setup correct fingerprint for your server in /etc/kerio-kvc.conf.

Then start VPN and it should run ok. m.

[Updated on: Wed, 29 April 2015 11:48]


Messages: 8
Karma: 1
Send a private message to this user
thx for help, it works with fingerprint from my server!

[Updated on: Sat, 15 October 2016 06:00]

Previous Topic: Kerio VPN protocol
Next Topic: SQUID Proxy & Kerio
Goto Forum:

Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Wed Dec 19 06:51:17 CET 2018

Total time taken to generate the page: 1.04020 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.