Why does the system display a message indicating that the name of a user's security certificate is invalid or is not aligned with the website name when the user logs in to the SSL VPN gateway

15

When the local certificate for the SSL VPN gateway is made, the CN field value of the local certificate must be the same as the IP address or domain name of the SSL VPN gateway. If they are different, the system displays a message indicating the name of a user's security certificate is invalid or is not aligned with the site name.

NOTE:
If the CN field value is the IP address of the SSL VPN gateway, the system also displays the above-mentioned message when users are logging in to the SSL VPN gateway using the domain name. Similarly, if the value for the CN field is the domain name of the SSL VPN gateway, the system also displays the above-mentioned message when users are logging in to the SSL VPN gateway using the IP address.

Other related questions:
Why is a user still displayed online on the SSL VPN gateway after the user closes the SSL VPN gateway page on a client
The user may only close the current tab or the browser without clicking Logout. After the previous operation, the user account is still displayed as an online user on the SSL VPN gateway. Wait a period of time and you can see that the user account is deleted from the user list. This waiting period is the session timeout time.

Why does the system display a message indicating that there is no right when you configure user-interface vty or user-interface console
Users on the console port are at level 15. Only the user at level 15 can access the user console interface. Users on the VTY user interface at level 0. If the user level is upgraded to level 15 using the following command, the system displays a message indicating that the user level is too low. user-interface vty 0 4 authentication-mode aaa user privilege level 15 protocol inbound ssh Example: [huawei]user-interface vty 0 4 Error: The user level is too low.

Why does a user automatically log out a while after logging in to the SSL VPN gateway through the web UI
The default session timeout time of the SSL VPN gateway is 5 minutes. If a user does not perform any operations within 5 minutes, the user automatically logs out. You can take the following steps to change the session timeout time: 1.Choose Network > SSL VPN > SSL VPN. 2.Click the Gateway Configuration tab. 3.In Session Timeout, enter a value you want to set. The session timeout time, also called the aging time, is the time when a user connection is terminated because no traffic is transmitted. After the timeout time elapses, the server and client must re-authenticate each other, and the user must re-log in. NOTICE: To allow users to use the same user account but different IP addresses to log in to the SSL VPN gateway, use the default value of Session Timeout (5 minutes).

Does an AR support access to the SSL VPN gateway using a domain name
In V200R002C00SPC200 and later versions, the AR supports access to the SSL VPN gateway using a domain name.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top