11-22-2018 09:42 AM
Hello community!
Created a VPN Palo Alto - Cisco Asa with certificates for Ikev2 gateway authentication.
Cannot establish the VPN. Did a debug and get the following error when the palo alto is trying to validate the ASA´s certificate
[PERR]: RSA_verify failed: 1099255804384:error:04091064:rsa routines:INT_RSA_VERIFY:algorithm mismatch:rsa_sign.c:269:
[PERR]: Invalid SIG.
[DUMP]: { 1: }: result: -1
[PERR]: { 1: }: x.x.x.x[500] - y.y.y.y[500]:0xffe400f8e0 authentication failure
[INFO]: { 1: }: x.x.x.x[500] - y.y.y.y[500]:0xffe400f8e0 authentication result: failure
[DUMP]: { 1: }: ikev2_abort(0xffe40055e0, 14)
Did anyone have the same error?
The certificate looks fine and it was working in a previous VPN ASA - ASA
Thanks in advance,
Marcos.
