USG 60 / SecuExtender SSL 4.0.3.0 : no matching certificate on some clients with Win10 rel 20H2
Options
JeanValjean
Posts: 5
Hello,
I'm having an issue here.
Zywall USG 60 updated to latest 4.60 patch 1.
Used in SSL VPN configuration, with SecuExtender SSL v4.0.3.0
This USG 60 has been in service for some years now, with no issues.
I was noticed very recently of an issue preventing establishment of a SSL VPN connexion, on some clients computers.
Here's the case of two of them that fail connecting :
Here's the case of two of them that fail connecting :
Laptop 1 : brand new, reformated upon arrival with Windows 10 Pro rel. 20H2
Laptop 2 : 4 years old. Windows 10 Pro OS has recently upgraded to rel. 20H2
Those two laptop can't connect anymore. When clicking connect, this windows certificate bank popups :
Roughly translated in english : "No certificate available. No certificate matches the program requirements. Click OK to continue".
When clicking OK, the connexion process stops, going back to the parameters window, standby, red icon in systray.
A root certificate with a private key is present in trusted root certification authorities on the two computers :
On a third computer I'm currently using, OS Win10 Pro 20H2, on whitch the SSL connexion still works, I have 2 similar SecuExtender certificates, that seems identical except for the serial.
Tried uninstalling and reinstalling SecuExtender SSL v4.0.3.0, rebooting, retrying, to no avail. Tried the same from a local administrator account : same issue.
Is the issue coming from an inadequate or solo SecuExtender certificate, or is this a issue rising from changes in security API since 20H2 release ?
Thanks, the issue is quite severe here, a bunch of users being kept unable to remotely work.
0
Comments
-
Hi @JeanValjean
There two points we need to clarify:
(1).When this symptom appears, please enter MS services.msc and check if ZyWALL SecuExtender Helper service is running or can manually re-execute.
(2).If symptom still appear please provide your C:\SecuExtenderHelper.log file to me via private message for further investigation.
Thanks.
0
Zyxel Employee
Categories
- All Categories
- 397 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 52 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 880 Nebula FAQ
- 415 Security FAQ
- 221 Switch FAQ
- 195 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight
