Cannot authenticate
Kevin Cernekee
cernekee at gmail.com
Mon Feb 3 22:35:38 EST 2014
On Mon, Feb 3, 2014 at 6:21 PM, Michael Cronenworth <mike at cchtml.com> wrote:
> I am attempting to connect to my work's VPN. Windows users download the Any
> Connect client, but I cannot connect with openconnect. I've run with
> "--verbose" and pasted the contents online. The company's site and my
> username have been obfuscated.
>
> http://fpaste.org/74145/80367139/
Interesting. In non-XML-POST mode (the default on 5.02 for gateways
with authgroups present), it returns the 204 error instead of the
usual "Login failed." In XML POST mode I get "Authentication failed."
which is a little different too.
I will try it with AnyConnect + MITM to see what happens.
Two things you can try:
1) Revert back to 5.01. This will use XML POST by default, and since
you're choosing the first authgroup, you shouldn't hit the old
authgroup selection problem.
2) Use the head of tree from git.infradead.org. This will also use
XML POST, and the authgroup logic should work as expected.
More information about the openconnect-devel
mailing list