Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    "Authentication failed due to problem verifying server certificate." error while trying to connect to Anyconnect SSL VPN.

    pfBlockerNG
    2
    4
    4.3k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      vishal3213208
      last edited by

      Hi Experts,

      I am facing very weired issue and not able to find anything to resolve it. When I am trying to connect to anyconnect then I am getting "Authentication failed due to problem verifying server certificate." error after my credential authentication.
      I trtied to find anything in alert page however not able to find anything. When I stop "pfBlockerNG DNSBL service" then it works absolutely fine. I tried adding server domain to DNSBL whitelist however it dosent seems to fix it.
      Can soneone please suggest what I can do to fix this issue? I really dont want to un-install this package as it is working great otherwise.

      1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan
        last edited by

        @vishal3213208 said in "Authentication failed due to problem verifying server certificate." error while trying to connect to Anyconnect SSL VPN.:

        pfBlockerNG

        pfBlockerNG by itself does nothing. It's installed totally empty.
        Then, you chose feeds and added them.

        Your VPN client uses certs to connect, and these are verified before every usage.
        It seems to me that IP(s) used check the certs are listed ina feed, and thus blocked ?
        The IP's are not reachable ?
        The cert info is wrong, so your issue is not related to pfBlockerNG at all.

        @vishal3213208 said in "Authentication failed due to problem verifying server certificate." error while trying to connect to Anyconnect SSL VPN.:

        I trtied to find anything in alert page however not able to find anything

        Because pfBlockerNG isn' blocking ?

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        1 Reply Last reply Reply Quote 0
        • V
          vishal3213208
          last edited by

          @Gertjan said in "Authentication failed due to problem verifying server certificate." error while trying to connect to Anyconnect SSL VPN.:

          The cert info is wrong, so your issue is not related to pfBlockerNG at all.

          @Gertjan
          That is the problem I am not able to figure out what is the problem and where to look for it.

          It seems to me that IP(s) used check the certs are listed ina feed, and thus blocked ? : I am not sure about it are you aware of any feed which does this or you can guide me where I can find that. I am using following feed in DNSBL:
          EasyList
          ADs
          Malicious
          BBcan177

          The IP's are not reachable ? It is rechable because as I mentioned once I stop DNSBL service then it work perfectrly fine also there is no issue with cert.

          GertjanG 1 Reply Last reply Reply Quote 0
          • GertjanG
            Gertjan @vishal3213208
            last edited by

            @vishal3213208 said in "Authentication failed due to problem verifying server certificate." error while trying to connect to Anyconnect SSL VPN.:

            and thus blocked

            Blocked IP's are shown on the report page / alert and or DNSBL
            Up to you to check who / which device was using that Ip - was it pfSense itself ?
            The IP must be in one of your feeds used.

            No "help me" PM's please. Use the forum, the community will thank you.
            Edit : and where are the logs ??

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.