Forum Discussion
CirrusAPM Network Access w/OSX
Hey. I have a 10.9.5 mac making a connection to APM 11.5.1. I am able to authenticate but the network access does not come up. It immediately disconnects (Connection dropped). The same config from a Windows 7 machine on the same network comes right up. It looks like I am not getting an IP from the pool. There are all sorts of errors in the edge client logs.
"Failed to properly restore routing table" "Cannot open tunnel channel" "Unrecoverable stream error. Domain, Code, URL, 12, 8" "Probing, connection failed, stream error"
I was able to connect to another APM instance outside my network from this MAC. Another MAC user outside my network was unable to connect to my APM. It is clearly my MAC to my APM, but I can't get it. Thanks.
2 Replies
don_23889Nimbostratus
are you using any kind of certificate authentication like, on-demand certs ?
for instance, we have Entrust client certs installed on remote workstations. Then within the policy, we have a macro for On-Demand Cert Auth : "required"
- When the dropdown is set to request = no issues
- when the dropdown is set to request = issues (initally)
we found that (simplistically speaking) the APM was sending a message to the MAC client that says, provide me your cert.... BUT Mac (being smarter than windows) basically sits there because it doesn't know what cert to provide.
the solution for us was to "profile" a given cert, within MAC, to the associated URL.
Erich_Rockman_1I am using a wildcard cert (*.domain.com). I fixed it by entering the Server Name in the Client SSL profile as *.domain.com. The PC was tolerant of it, but the MAC was not. Thanks for the feedback.
