Ngdial Command Fails if Appliance is configured with a Self-Signed Certificate

Description

Ngdial Command Fails if Appliance is configured with a Self-Signed Certificate

Resolution

Overview

The following ngdial command will fail if the appliance you are connecting to an appliance that is setup with self-signed SSL certificate:

ngdial "Aventail VPN Connection" -server=<ADDR> -login="<REALM>" <USERNAME> <PASSWORD> -icon -status=enable


When this error occurs, the logging messages from ngutil look like this:

09:50:35.704 D Connection closed. 09:50:35.704 D IoClose completed, status 0x5023 09:51:19.633 D LPRPCTransportSSPI::Connect() FAILED 09:51:19.633 I No logon server was detected on the appliance. [67.42.40.117] 09:51:20.367 E RasCustomDial completed with errors.                 Error 0x000004D0: The network location cannot be reached. For information about network troubleshooting, see Windows                Help.

Resolution

For appliances setup with self-signed certificate, we need to use the following command to ignore certificate warnings:

ngdial "Aventail VPN Connection" -server=<ADDR> -login="<REALM>" <USERNAME> <PASSWORD> -icon -status=enable -nocerterrors

For more details, please contact SonicWall Support.

Tracking

Bug ID: 142551

Related Articles

  • SMA100 End of Support No-Charge Replacement FAQ
    Read More
  • SMA1000: Post upgrade to 12.5.0 on AWS and Azure, we show the error Could not retrieve the DNS settings once we log in to AMC/CMS console
    Read More
  • Firmware version required to upgrade to version 12.5.0.
    Read More

Categories

Secure Mobile Access
SMA 1000 Series
not finding your answers?
Ask the Community