Hi Steve, I generated the certificate according to the manual on ocserv's webpage: http://www.infradead.org/ocserv/manual.html and the configuration file using the one from source, of course modified to accommodate the actual environment. Thanks, TZ On 3/15/2014 4:17 AM, Steve wrote: > How did you generate your certs and config file please? > > On Sat, Mar 15, 2014 at 8:48 AM, Tony Zhou <tonytzhou at gmail.com> wrote: >> Hi all, >> >> I have recently migrated an ocserv server from Xen to KVM platform with same >> settings except for IP address and re-generated certificate. After the >> migration all the other clients are fine except for iOS - it always prompts >> "The certificate on the secured gateway is invalid. A VPN connection will >> not be established". Here's the environment: >> >> Server: Debian 7.0.6 + ocserv 3.2 >> Client: iOS 7.0.6 + Cisco Anyconnect 3.0.09266 >> >> I used -d 9 for logging and it's uploaded here: http://pastebin.com/WNQc04DY >> >> Thanks in advance, >> TZ >> >> _______________________________________________ >> openconnect-devel mailing list >> openconnect-devel at lists.infradead.org >> http://lists.infradead.org/mailman/listinfo/openconnect-devel
