Skip to content
Unable to use pkcs12 authentication
Got a problem with Viscosity or need help? Ask here!
-
fyellin
It seems that Viscosity doesn't know how to ask for a password when using a pkcs12 certificate.
The config.conf file generated by Viscosity correctly contained the lines:
The config.conf file generated by Viscosity correctly contained the lines:
Code: Select all
When I try running this using the GUI, I get the error message:
tls-auth ta.key 1
pkcs12 pkcs.p12
Mon Dec 8 18:05:50 2008: Error parsing PKCS#12 file pkcs.p12: error:23076071:PKCS12 routines:PKCS12_parse:mac verify failure: error:23076071:PKCS12 routines:PKCS12_parse:mac verify failureWhen I try running openvpn directly:
Mon Dec 8 18:05:50 2008: Error: private key password verification failed
Code: Select all
it correctly asks me for the pkcs12 password, and then establishes the tunnel.sudo /Applications/Viscosity.app/Contents/Resources/openvpn2.1 config.conf
How do you get on if you manually import your original OpenVPN config file and associated key/certificate files? Instructions for doing so can be found at:
http://www.viscosityvpn.com/forum/viewt ... p?p=76#p76
Cheers
James
http://www.viscosityvpn.com/forum/viewt ... p?p=76#p76
Cheers
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
No joy.
I did the following:
The result was identical. It never asked me for a password. It failed it parse the file Frank.p12 since it didn't know the password. Running
I did the following:
Code: Select all
I then edited 2/config.conf by
bash-3.2$ cd Library/Application\ Support/Viscosity/OpenVPN/
bash-3.2$ mkdir 2
bash-3.2$ cp 1/* 2
bash-3.2$ cp ~/Library/openvpn/home/Frank.p12 2
bash-3.2$ rm 2/ca.crt 2/cert.crt 2/key.key
- Deleting the Viscosity lines at the top
- Commenting out the "ca", "cert", and "key" lines
- Adding the line "pkcs12 Frank.p12"
The result was identical. It never asked me for a password. It failed it parse the file Frank.p12 since it didn't know the password. Running
Code: Select all
directly worked correctly.sudo /Applications/...../openvpn2.1 config.conf
Hi fyellin,
I'll see if I can replicate what might be happening and post back here.
If you're able to, I'd appreciate it if you could send a copy of your raw OpenVPN config file to [email protected] (feel free to censor out any sensitive addresses etc).
Regards
James
I'll see if I can replicate what might be happening and post back here.
If you're able to, I'd appreciate it if you could send a copy of your raw OpenVPN config file to [email protected] (feel free to censor out any sensitive addresses etc).
Regards
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
4 posts
Page 1 of 1