Products
- Network Security
  - Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
  - Security ServicesComprehensive security for your network security solution
  - Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
  - Capture ATPMulti-engine advanced threat detection
  - Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
  - Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
  - Secure Mobile AccessRemote, best-in-class, secure access
  - Wireless Access PointsEasy to manage, fast and secure Wi-FI
  - SwitchesHigh-speed network switching for business connectivity
- Email Security
  - Email SecurityProtect against today’s advanced email threats
- Cloud Security
  - Cloud App SecurityVisibility and security for Cloud Apps
  - Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
  - Capture ClientStop advanced threats and rollback the damage caused by malware
  - Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
  - Product Menu Right Image
  - Capture Cloud Platform
    Capture Cloud Platform
    
    A security ecosystem to harness the power of the cloud
- Button Widgets
  - Products A-Z
    all products A–Z FREE TRIALS
Solutions
- Industries
- Use Cases
- Solutions Widgets
  - Solutions Content Widgets
    Federal
    
    Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
  - Solutions Image Widgets
Partners
- SonicWall Partners
- Partner Resources
- Partner Widgets
  - Custom HTML : Partners Content WIdgets
    Partner Portal
    
    Access to deal registration, MDF, sales and marketing tools, training and more
  - Partners Image Widgets
Support
- Support
- Resources
- Capture Labs
- Support Widget
  - Custom HTML : Support Content WIdgets
    Support Portal
    
    Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
  - Support Image Widgets
COMPANY
PROMOTIONS
- SonicWall Promotions
- Customer Loyalty Program
MANAGED SERVICES
Contact Sales

English English en

Modern Connect tunnel fails to connect to Appliance with Self-Signed Certificate post 12.4.0-02559.

09/25/2020 8 People found this article helpful 85,308 Views

Description

Modern Connect tunnel fails to connect to Appliance with Self-Signed Certificate post 12.4.0-02559. Is this expected?

Cause

Resolution

SonicWall had to follow security guidelines provided by CSfC for securing communication between client and Appliance.
Keeping the above guidelines 12.4.0 hotfix-02559 has hardened which would not allow connections if the appliance do not have trusted Certificate.

Note:

MCT Connections have no impact with appliances using valid certificates from a trusted CA.
This change impacts who use self-signed certificates.

Workaround:

This is recommended only for internal or feature test or Lab or QA testing devices. Not recommended for production implementation this would pose security risk.
Add Self-Signed Certificate to trusted sites under Internet Options-Security-Trusted Sites add the url.
Or
To allow such users for internal testing, below registry key can be used to override the default behavior.

[HKEY_CURRENT_USER\Software\SonicWall\SonicWall Secure Mobile Access]
"AllowUnsafeTLS"=dword:00000001

Note: This restriction is not implemented for Legacy version of Connect Tunnel.

ISSUE ID:

Related Articles

Categories

Not Finding Your Answers?

ASK THE COMMUNITY

Was This Article Helpful?

Stay In Touch