NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
MD5-Signed Certificate Warning with OpenVPN on iOS
As of version 1.2.8 of the OpenVPN app on iOS, OpenVPN issues the following warning: > WARN TLS: received certificate signed with MD5. > Please inform your admin to upgrade to a > stronger algori...
FYI, I documented the steps to required to replace the certificates here. Unfortunately it the steps are written for users of Windows, but it also uses mostly cross-platform OpenSource tools and explains what's going on so I think it should be pretty translatable if you don't have access to any Windows boxes.
Just posting this so you have at least one go-forward path.
This update resolved my issues with mulitple prompts per session.
I'm not extremly savy on certificates so was hoping someone could help. Is there another option other than MD5 certificate that Netgear offers or are we all waiting for Netgear to come up with something before the end of April?
Thanks!
-Cameron
No, there's nothing users can do to change the system's certificate. You can install an alternative firmware but that comes with its own negatives.
This honestly doesn't seem like a particularly difficult change. Netgear needs to change the settings in the OpenVPN files they generate and seed a new certificate to devices.
They say to never attribute to malice what can be explained by incompetence but either way, it's an experience which has me questioning whether I'd buy a Netgear product again.
This honestly doesn't seem like a particularly difficult change. Netgear needs to change the settings in the OpenVPN files they generate and seed a new certificate to devices.
They say to never attribute to malice what can be explained by incompetence but either way, it's an experience which has me questioning whether I'd buy a Netgear product again.
Hi pyrmont,
NETGEAR is aware of this certificate warning. We will provide update once new information will be available.
I'd hope Netgear is aware of this issue given it was initially reported on this forum back in June of last year. But more to the point, your users don't care whether you're 'aware' of it. What we care about is when you are going to 'fix' it.
FYI, I documented the steps to required to replace the certificates here. Unfortunately it the steps are written for users of Windows, but it also uses mostly cross-platform OpenSource tools and explains what's going on so I think it should be pretty translatable if you don't have access to any Windows boxes.
Just posting this so you have at least one go-forward path.
JamesGL wrote:Hi pyrmont,
NETGEAR is aware of this certificate warning. We will provide update once new information will be available.
Uh hmm JamesGL, it's literally down to the wire, days before end of April, and still not a peep from Netgear, what gives?
On Windows OpenVPN is not working allready due to MD5. Test on my R7000 with new 1.9.0.28 firmware version.
