IKEv2 Client config & instructions download
M470 12.11.1
Trying to download the IDEv2 client information from WSM and I receive this error. I have saved the conifg back to the firebox (even though no changes have been made) and still get the error.
"The Mobile VPN with IKEv2 config had not been saved to the firebox.
Please save the config to the firebox before downloading the client instructions."
Tried using the Web UI and I get a 404 error.
Any ideas? Not supposed to be complicated.
- Doug
It's usually something simple.
0
Sign In to comment.
Comments
Never mind. Looks like a bug.
https://techsearch.watchguard.com/KB?type=Known Issues&SFDCID=kA16S000000byvCSAQ&lang=en_US
Not certain I like the workaround. Anyone try it?
It's usually something simple.
Hi @shaazaminator
The workaround just has you importing the public certs (to form a chain of trust) -- this is the same thing you'd need to do in order to build a chain of trust for a CA for a cert signed by a public CA. When you attempt to download the profile, the system attempts to validate the cert and fails. Putting the cert chain allows the firebox to verify the cert, and allows the download.
-James Carson
WatchGuard Customer Support