Ngdial Command Fails if Appliance is configured with a Self-Signed Certificate

Description

Ngdial Command Fails if Appliance is configured with a Self-Signed Certificate

Resolution

Overview

The following ngdial command will fail if the appliance you are connecting to an appliance that is setup with self-signed SSL certificate:

ngdial "Aventail VPN Connection" -server=<ADDR> -login="<REALM>" <USERNAME> <PASSWORD> -icon -status=enable


When this error occurs, the logging messages from ngutil look like this:

09:50:35.704 D Connection closed. 09:50:35.704 D IoClose completed, status 0x5023 09:51:19.633 D LPRPCTransportSSPI::Connect() FAILED 09:51:19.633 I No logon server was detected on the appliance. [67.42.40.117] 09:51:20.367 E RasCustomDial completed with errors.                 Error 0x000004D0: The network location cannot be reached. For information about network troubleshooting, see Windows                Help.

Resolution

For appliances setup with self-signed certificate, we need to use the following command to ignore certificate warnings:

ngdial "Aventail VPN Connection" -server=<ADDR> -login="<REALM>" <USERNAME> <PASSWORD> -icon -status=enable -nocerterrors

For more details, please contact SonicWall Support.

Tracking

Bug ID: 142551

Related Articles

  • How to Provision SMA1000 in Monthly Billing (MSSP Program)
    Read More
  • SMA 1000 Series Support Matrix
    Read More
  • How to Configure SAML 2.0 SSO with Microsoft Entra ID for SonicWall SMA 1000 Series
    Read More

Categories

Secure Mobile Access
SMA 1000 Series
not finding your answers?
Ask the Community
Chat