Support Center > Search Results > SecureKnowledge Details
Remote Access users unable to connect when authenticating using certificate issued by subordinate CA
Symptoms
  • VPN client attempts to connect to Remote Access community but fails.
  • The issue only happens when using a certificate issued by a subordinate Certificate Authority. When issuing a certificate from a trusted (Root) Certificate Authority and using it to connect, the user is able to connect to the community.
  • In VPND: [vpnd 14650 1978533568]@IPSec-VC-CP[25 Nov 19:37:27] IsChainTrusted: reached the chain's top level: 0 [vpnd 14650 1978533568]@IPSec-VC-CP[25 Nov 19:37:27] IsSignedByIntermediateCA: IntermediateCA Retrieval is no activated. [vpnd 14650 1978533568]@IPSec-VC-CP[25 Nov 19:37:27] Get_Issuers_of_chain: IntermediateCA Retrieval is no activated.
Cause

Problem with validating trust for certificates issued by subordinate CA.


Solution
Note: To view this solution you need to Sign In .