Our company is using self-signed SonicWall for firewall facility. And remote clients needs to be connect to internal network through VPN via NetExtender client.
Some of the clients are using Linux OS without Desktop Environment on purpose.
There is an issue occurring with NetExtender Client at those no Desktop Environment computers on each connection attempt.
On each connection attempt NetExtender client need to be approved for this question:
Warning: self signed certificate
Do you want to proceed? (Y:Yes, N:No, V:View Certificate)
I read about self-signed certificates from this link
Than I try to install /home/$USER/.netExtenderCerts/PUB_CERT/ca-bundle.crt file by copying to /usr/local/share/ca-certificates and using update-ca-certificiates command.
# cp /home/$USER/.netExtenderCerts/PUB_CERT/ca-bundle.crt /usr/local/share/ca-certificates
# update-ca-certificates
Updating certificates in /etc/ssl/certs...
1 added, 0 removed; done.
After applying this method and rebooted the OS, NetExtender Client still hanging at same question. This were preventing to build automated connection.
How could I prevent netExtender client to asking this question?
Best Answer
To prevent NetExtender's certificate verification dialogue, you can use the undocumented switch
"--always-trust"For example:
Tested on Linux, but I'm not sure about NetExtender Windows CLI.
Note: as commented by HÃ¥kan Lindqvist, take into consideration that this will open up for MITM attacks.