Forum Discussion

Guide

Feb 22, 2018

Solved

MD5-Signed Certificate Warning with OpenVPN on iOS

As of version 1.2.8 of the OpenVPN app on iOS, OpenVPN issues the following warning: > WARN TLS: received certificate signed with MD5. > Please inform your admin to upgrade to a > stronger algori...

Diggie3
Mar 01, 2018
FYI, I documented the steps to required to replace the certificates here. Unfortunately it the steps are written for users of Windows, but it also uses mostly cross-platform OpenSource tools and explains what's going on so I think it should be pretty translatable if you don't have access to any Windows boxes.

Just posting this so you have at least one go-forward path.

993TT

Aspirant

Jul 27, 2018

So the R7000P had a hot fix beta firmware available 1.3.2.34, but it has been pulled when they updated the firmware to 1.3.1.44 and the 1.3.1.44 does not support SHA256, what up with that?

schumaku
Guru - Experienced User
Jul 27, 2018
993TT wrote:
So the R7000P had a hot fix beta firmware available 1.3.2.34, but it has been pulled when they updated the firmware to 1.3.1.44 and the 1.3.1.44 does not support SHA256, what up with that?

JamesGL wrote:

Resolution will be released prior to the deadline.

So dear JamesGL, whats the deal here? Deadline passed months ago.
- 993TT
  Aspirant
  Jul 29, 2018
  Hah! Turns out the new R7000P firmware does have the SHA256 support. The release notes just don't mention it.
  - mike406
    Apprentice
    Jul 30, 2018
    993TT wrote:
    
    Hah! Turns out the new R7000P firmware does have the SHA256 support. The release notes just don't mention it.
    
    Yes, and since they fail to mention it. People are going to wonder why their clients no longer connect to the VPN since they have to re-acqurie the new certs for each device.