Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WARNING: No server certificate verification method has been enabled. See http:/

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 2 Posters 16.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      Nachtfalke
      last edited by

      Hi,

      every time I connect to my pfsense server I got this message

      WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.

      My knowledge about OpenVPN isn't really good but I didn't found a possibility in pfsense Cert Manager to get this working:

      You can build your server certificates with the build-key-server script (see the easy-rsa documentation for more info). This will designate the certificate as a server-only certificate by setting the right attributes. Now add the following line to your client configuration:

remote-cert-tls server

      Did I miss something in the Cert Manager config options or isn't there a possibility in there till now ?

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        I have looked into that, but building keys that way requires some extra openssl.cnf mojo that is tricky to work out when trying to use PHP's OpenSSL functions like we do.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • N
          Nachtfalke
          last edited by

          Hi jimp,

          thanks for feedback. Just wanted to be sure that I didn't miss anything in the pfsense config.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.