Difference between revisions of "openvpn TLS handshake failed"
From thelinuxwiki
(→solution) |
(→errors) |
||
| Line 4: | Line 4: | ||
==errors== | ==errors== | ||
VERIFY ERROR: depth=0, error='''unable to get local issuer certificate''': CN=johnsmith | VERIFY ERROR: depth=0, error='''unable to get local issuer certificate''': CN=johnsmith | ||
| − | vpnserver openvpn[3573]: 192.168.1.100:60754 TLS_ERROR: BIO read tls_read_plaintext error: error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned | + | <br>vpnserver openvpn[3573]: 192.168.1.100:60754 TLS_ERROR: BIO read tls_read_plaintext error: <br>error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned |
| − | vpnserver openvpn[3573]: 192.168.1.100:60754 TLS Error: TLS object -> incoming plaintext read error | + | <br>vpnserver openvpn[3573]: 192.168.1.100:60754 TLS Error: TLS object -> incoming plaintext read error |
| − | vpnserver openvpn[3573]: 192.168.1.100:60754 TLS Error: TLS handshake failed | + | <br>vpnserver openvpn[3573]: 192.168.1.100:60754 TLS Error: TLS handshake failed |
==root cause== | ==root cause== | ||
Latest revision as of 17:57, 11 November 2025
Contents |
problem
openvpn connection fails
errors
VERIFY ERROR: depth=0, error=unable to get local issuer certificate: CN=johnsmith
vpnserver openvpn[3573]: 192.168.1.100:60754 TLS_ERROR: BIO read tls_read_plaintext error:
error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned
vpnserver openvpn[3573]: 192.168.1.100:60754 TLS Error: TLS object -> incoming plaintext read error
vpnserver openvpn[3573]: 192.168.1.100:60754 TLS Error: TLS handshake failed
root cause
certificate issue.
solution
generate and new crt and key with the appropriate CA
