Operational Defect Database
BugZero found this defect 3216 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA10H000000g3FOSAY
Cannot export RSA certificate from Firebox for Mobile VPN with L2TP
Last update date:
7/31/2015
Affected products:
Firebox M200
Firebox M300
Firebox M270
Firebox M370
Firebox M470
Firebox M570
Firebox M670
Firebox M290
Firebox M390
Firebox M400
Firebox M500
Firebox M440
Affected releases:
All
Fireware
11.x
11.10.x
11.10
11.10.1
11.10.2
11.10.3
11.10.4
11.10.5
11.10.6
11.10.7
Fixed releases:
All
Description:
Issue
If you configure Mobile VPN with L2TP with an RSA certificate for authentication, you cannot export the certificate from the Firebox.
Workaround/Solution
You can export the certificate if you configure your Firebox as a device managed by a WatchGuard Management Server, as described in these steps: If the device is not already managed by a Management Server, install the Management Server component of WatchGuard System Manager and configure the Firebox as a managed client. For more information, see Set Up WatchGuard Servers.Configure Mobile VPN with IPSec with Certificate-Based authentication. For more information, see Certificates for Mobile VPN with IPSec Tunnel Authentication. In Policy Manager, export the Mobile VPN with IPSec profile. The certificates for authentication will appear in the same folder as the configuration files. For more information, see Generate Mobile VPN with IPSec Configuration Files.
