Why am I seeing a peer certificate verification failure message when connecting to the OpenVPN server on QVPN Service?
Last modified date:
2024-08-07
Applicable Products
Applications
- QVPN Service
- OpenVPN Connect 3.4.0 and later
Operating Systems
- QTS 5.1.x and later
- QuTS hero h5.1.x and later
- QuTS cloud c5.1.0 and later
Scenario
OpenVPN Connect version 3.4.0 and later versions use OpenSSL library version 3.0.8, which does not support QVPN Service. This causes the "peer certificate verification failed" error message to appear when connecting OpenVPN Connect to QVPN Service.
In compliance with the latest OpenVPN upgrade policy, the configuration file certificate must also be updated. Outdated certificates no longer conform to the cryptographic standards enforced by the latest OpenVPN Connect version.
Solution
Upgrade QVPN Service to version 3.2.x or later, followed by an update to your peer certificate, to prevent connection failures stemming from outdated certificates.
Updating QVPN Service
- Open App Center.
- Locate QVPN Service.
- Click Update or Required Update.
A confirmation message appears. - Click OK.
The latest version of QVPN Service is installed on the device.
Updating the peer certificate
- Open QVPN Service.
- Go to VPN Server > OpenVPN.
- Click Update Certificate.
NoteThe Update Certificate button emerges only when QVPN Service detects an outdated peer certificate in use for OpenVPN Connect connections. - Click Apply.
QVPN Service updates the peer certificate. - Navigate to the configuration file section on the same screen.
- Next to Configuration file, click Download.
QVPN Service downloads the peer certificate. - Import the downloaded certificate to OpenVPN Connect.
