Package: network-manager-fortisslvpn
version: 1.2.8-2
severity: important

I was not able to use the network manager interface to connect to a VPN
because it required adding an exception to the certificate because it
was self signed.

It did not even give a useful error message, it was just "Error:
Connection activation failed: The VPN service stopped unexpectedly".

I was able to get the actual error message by running openfortivpn from
the command line, which gave a useful error message.

Gateway certificate validation failed, and the certificate digest in not
in the local whitelist. If you trust it, rerun with: --trusted-cert <digest>
or add this line to your config file:
trusted-cert = <digest>

Then it also gave the details of the certificate. I thin it is important
to expose this option to the end users.

Thanks
Praveen

Attachment: signature.asc
Description: OpenPGP digital signature

Reply via email to