NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

pyrmont's avatar
pyrmont
Guide
Feb 22, 2018
Solved

MD5-Signed Certificate Warning with OpenVPN on iOS

As of version 1.2.8 of the OpenVPN app on iOS, OpenVPN issues the following warning: > WARN TLS: received certificate signed with MD5. > Please inform your admin to upgrade to a > stronger algori...
Firmware
iOS
Not resolved
openvpn
Security
VPN
  • Diggie3's avatar
    Diggie3
    Mar 01, 2018

    FYI, I documented the steps to required to replace the certificates here. Unfortunately it the steps are written for users of Windows, but it also uses mostly cross-platform OpenSource tools and explains what's going on so I think it should be pretty translatable if you don't have access to any Windows boxes.

     

    Just posting this so you have at least one go-forward path.

     

whataboutbob's avatar
whataboutbob
Aspirant
Mar 06, 2018

Does anyone know if Netgear is issuing a fix for this before April 2018 EOL deadline or do I need to manually upgrade my certificate? 

Diggie3's avatar
Diggie3
Luminary
Mar 06, 2018
They have claimed that they will elsewhere in the forums. Based on their ability to deliver fixes for other critical product issues, I would be skeptical.
  • whataboutbob's avatar
    whataboutbob
    Aspirant
    Mar 06, 2018

    Fingers crossed but if they don't deliver close to the deadline, I'll install the certificate. Hopefully it doesn't get to that. Thanks for your writeup, I might have to go your route with some slight tweaks for Mac but it should be siimilar.

    • pyrmont's avatar
      pyrmont
      Guide
      Mar 06, 2018
      For macOS, (1) the installation of OpenVPN, Easy-RSA and telnet will be different and (2) the Easy-RSA template files will live somewhere else, but otherwise everything else should be the same.