Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » VPN client on Linux (Fedora) (Problems with connecting to VPN server from Linux)
  •  
jsosic

Messages: 4

Karma: 1
Send a private message to this user
Hi.

I've downloaded latest "kerio-control-vpnclient-7.2.0-3028-linux.deb", and I've extracted the package:

# ar x kerio-control-vpnclient-7.2.0-3028-linux.deb
# tar -xvzf data.tar.gz


I've put all the libraries in /usr/lib and binary in /usr/sbin, init script to /etc/init.d.

I can manage to start the kerio, but here is a problem from logs:
==> error.log <==
[10/Oct/2011 15:12:00] libVPN: Connection to peer with specified certificate was denied(199)


Here is my /etc/kerio-kvc.conf:
<config>
  <connections>
    <connection type="persistent">
      <server>SERVER_IP</server>
      <port>4090</port>
      <username>jakov.sosic</username>
      <password>XOR:someHEXnumber</password>
      <fingerprint>${FINGERPRINT}</fingerprint>
      <active>1</active>
    </connection>
  </connections>
</config>


I don't know what should I put in the <fingerprint> as value?

[Updated on: Mon, 10 October 2011 15:16]

  •  
jsosic

Messages: 4

Karma: 1
Send a private message to this user
In debug.log I can see this:
[10/Oct/2011 15:20:49] {engine} CheckCertificate - remote endpoint's certificate fingerprint does not match.
[10/Oct/2011 15:20:49] {engine} Callback StatusChanged called from libVpn(deny).
[10/Oct/2011 15:20:49] {engine} VpnFSM: Saving and sending status to Engine (error).


I've added fingerprint of the certificate from the server config, but still no luck...
  •  
mattoni

Messages: 1
Karma: 0
Send a private message to this user
Hi,

I see that this post is old date, but I try to answer for people who find this thread cos have the same problem (like me).

1, If You have self signed cert you need add CA to trusted on your PC. For Debs like:
Save CA to /usr/share/ca-certificates/kerio/your_cacert.crt.
Run "dpkg-reconfigure ca-certificates" and add your certificate.


2, Check if Your fingerprint variable is setup properly.

echo ${FINGERPRINT} -> What is the result? Is it the same like other people (e.g. on Windows)?

If not, so You need to setup correct fingerprint for your server in /etc/kerio-kvc.conf.

Then start VPN and it should run ok. m.

[Updated on: Wed, 29 April 2015 11:48]

  •  
marian

Messages: 8
Karma: 1
Send a private message to this user
thx for help, it works with fingerprint from my server!

[Updated on: Sat, 15 October 2016 06:00]

Previous Topic: Kerio VPN protocol
Next Topic: Allow only Whatsapp and block websites
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Mon Dec 05 09:26:38 CET 2016

Total time taken to generate the page: 0.00973 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.