Unable to connect over SSL VPN-Plus when an intermediate certificate is in use
search cancel

Unable to connect over SSL VPN-Plus when an intermediate certificate is in use

book

Article ID: 341255

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

Symptoms:
  • For SSL VPN-Plus, you have a custom certificate configured on NSX Edge with an intermediate CA 
  • When trying to connect via browser you get error: HTTP 400 Bad Request
  • When trying to connect with SSL VPN-Plus Client it fails with error: Connection terminated


Environment

VMware NSX for vSphere 6.3.x
VMware NSX for vSphere 6.2.x
VMware NSX for vSphere 6.4.x

Cause


This is by design. Intermediate CA certificates are not supported for use with SSL VPN-Plus

Resolution


There is no resolution for this issue.

Workaround:

To workaround this issue use a certificate that is signed directly by a Root CA