> Hi, > > On Thu, Oct 16, 2025 at 01:56:01PM +0200, Simon Matter wrote: >> I've tried both options but unfortunately they don't make a difference. >> >> Is there anything else I can try? > > "Look carefully at your certificates" - the error we get back from OpenSSL > is "certificate verification failed", which could be anything really. > > Maybe "openssl verify" can shed some light on it. > > (As far as I can see, it's the client that complains, so you need to > verify the server cert vs. the CA cert that is in the client config)
Looks like "update-crypto-policies --set LEGACY" did the trick to make it work. Ar least this makes the errors go away in a test setup. I'll soon do it on a production system. Simon _______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
