StF*_*tFS 2 vpn proxy networkmanager openconnect ubuntu-14.04
我需要连接到 Linux 上的 Cisco VPN,首先我使用 KDE NetworkManager Plasma 小部件来完成此操作。效果很好,如果我从网络管理器小部件中选择 VPN,我就可以连接到 VPN。
\n\n但是,如果我尝试使用命令行,则无法正常工作(IP 和 URL 已更改以保护无辜者):
\n\n\xe2\x9e\x9c ~ sudo openconnect --proxy http://proxy.mycompany.com:8080 vpn.mycompany.com:443 \nPOST https://vpn.mycompany.com/\nAttempting to connect to proxy 172.17.122.135:8080\nRequesting HTTP proxy connection to vpn.mycompany.com:443\nUnexpected continuation line after CONNECT response: \'Via: 1.1 SPROXY2\'\nUnexpected continuation line after CONNECT response: \'X-WebMarshal-RequestID: 445D5E14-309A-4AA2-B7AF-07CAAD5BB21D\'\nSSL negotiation with vpn.mycompany.com\nServer certificate verify failed: signer not found\n\nCertificate from VPN server "vpn.mycompany.com" failed verification.\nReason: signer not found\nEnter \'yes\' to accept, \'no\' to abort; anything else to view: yes\nConnected to HTTPS on vpn.mycompany.com\nGot HTTP response: HTTP/1.0 302 Object Moved\nGET https://vpn.mycompany.com/\nAttempting to connect to proxy 172.17.122.135:8080\nRequesting HTTP proxy connection to vpn.mycompany.com:443\nUnexpected continuation line after CONNECT response: \'Via: 1.1 SPROXY2\'\nUnexpected continuation line after CONNECT response: \'X-WebMarshal-RequestID: 39FA73DC-1FDD-4C4C-A1A6-5993477DD8E3\'\nSSL negotiation with vpn.mycompany.com\nServer certificate verify failed: signer not found\nConnected to HTTPS on vpn.mycompany.com\nGot HTTP response: HTTP/1.0 302 Object Moved\nGET https://vpn.mycompany.com/+webvpn+/index.html\nRequesting HTTP proxy connection to vpn.mycompany.com:443\nUnexpected continuation line after CONNECT response: \'Via: 1.1 SPROXY2\'\nUnexpected continuation line after CONNECT response: \'X-WebMarshal-RequestID: 0141A4E6-1EA7-4FAE-AFA0-E56B2BC07BD1\'\nSSL negotiation with vpn.mycompany.com\nServer certificate verify failed: signer not found\nConnected to HTTPS on vpn.mycompany.com\nPlease enter your username and password.\nGROUP: [1..VPN|2..AD]:2\nAuth choice "2" not valid\nFailed to obtain WebVPN cookie\n\xe2\x9e\x9c ~ \n系统提示我证书验证失败,然后提示我选择组,但随后一切都失败,并显示“身份验证选择“2”无效”。
\n\n我尝试了 openconnect 命令的不同选项。例如 -g 指定组 -u 指定用户名,--no-cert-check 跳过失败的证书检查,但没有任何效果。
\n\n正如你所看到的,我正在使用代理。这可能与此有关,但我不确定它是如何(也许?)影响这一点的。
\n\n我不明白 openconnect 如何通过 NetworkManager KDE 小部件工作,但在命令行上失败。我在这里错过了什么吗?
\n你一定是在跟我开玩笑!!!
所以问题是当我看到以下选项时:
Please enter your username and password.
GROUP: [1..VPN|2..AD]:
我选择“2”并按回车键!只是为了好玩,我什至尝试输入“AD”而不是使用“2”,但仍然没有运气。
刚才我尝试输入“2..AD”...并且成功了!
令人难以置信的愚蠢“用户体验”!
| 归档时间: |
|
| 查看次数: |
4894 次 |
| 最近记录: |