GlobalProtect-openconnect icon indicating copy to clipboard operation
GlobalProtect-openconnect copied to clipboard

Published 20 hours ago verified publisher icon yuezk

cafile

Open brjadams opened this issue 4 years ago • 3 comments

passing cafile as part of custom parameters?

brjadams avatar Aug 31 '21 15:08 brjadams

@brjadams What do you mean by cafile? Is it the certificate file passed to the OpenConnect CLI?

yuezk avatar Sep 01 '21 06:09 yuezk

i ended up using gp_saml_gui.py, and was able to pass a certificate via teh --cafile argument as such:

gp_saml_gui.py
--gateway
--pkexec-openconnect
--clientos=Windows
--no-verify myvpn.domain.com --
--cafile=${HOME}/Documents/DigiCertTLSRSASHA2562020CA1-1.crt.pem

I was not able to connect with your program and I believe the difference to be the ability to pass that cert.

brjadams avatar Sep 01 '21 19:09 brjadams

I see, the cafile is used by the webview to load the web page, instead of passing to the OpenConnect CLI, so the custom parameter doesn't work.

yuezk avatar Sep 01 '21 23:09 yuezk