That was it, thanks! Now I'm troubleshooting another issue, which is likely not related to OpenConnect. I'll post back if I get stuck again, but my initial thought is the VPN server might have some setting that will only allow usage of the Cisco brand VPN client. If that ends up being the case, then I'll be at the mercy of their help desk, as they don't officially support Linux, only Windoze clients. :-/ On Mon, Jul 11, 2016 at 3:11 PM, David Woodhouse <dwmw2 at infradead.org> wrote: > On Mon, 2016-07-11 at 15:05 -0400, Oliver Hernandez wrote: >> pkcs11:model=;manufacturer=;serial=;token=HERNANDEZ.OLIVER.xxx.xxxxxx;id=%00%02;object=CAC%20Email%20Signature%20Certificate;object-type=cert >> Type: X.509 Certificate >> Label: CAC Email Signature Certificate >> ID: 00:02 >> >> And the result of attempting to connect: >> >> # openconnect --no-cert-check -c >> 'pkcs11:token=HERNANDEZ.OLIVER.xxx.xxxxx;id=%02' foo.remotevpn > > "id=%02" != "id=%00%02" > > -- > dwmw2
