Package: network-manager-fortisslvpn version: 1.2.8-2 severity: important I was not able to use the network manager interface to connect to a VPN because it required adding an exception to the certificate because it was self signed.
It did not even give a useful error message, it was just "Error: Connection activation failed: The VPN service stopped unexpectedly". I was able to get the actual error message by running openfortivpn from the command line, which gave a useful error message. Gateway certificate validation failed, and the certificate digest in not in the local whitelist. If you trust it, rerun with: --trusted-cert <digest> or add this line to your config file: trusted-cert = <digest> Then it also gave the details of the certificate. I thin it is important to expose this option to the end users. Thanks Praveen
signature.asc
Description: OpenPGP digital signature