openconnect with Belgian EID

David Woodhouse dwmw2 at
Tue Nov 5 10:53:47 EST 2013

On Tue, 2013-11-05 at 16:26 +0100, Christof Haerens wrote:
> Exported certs with id 3, 4 and 6 to myca.crt, but no luck:

Can you drop the --no-cert-check argument to openconnect now?

Can you also capture the traffic between client and server when the
Cisco client successfully connects, and when OpenConnect fails? I
believe the *certificates* are sent in the clear, and that ought to be


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5745 bytes
Desc: not available
URL: <>

More information about the openconnect-devel mailing list