Troubleshooting Tip: Error 'unable to parse peer.subject as DN' with IPsec dial-up VPN using certificate authentication
| Description | This article describes how to troubleshoot the error 'unable to parse peer.subject as DN' when using certificate authentication with IPsec dial-up VPN. |
| Scope | FortiGate. |
| Solution | Running ike debug while connecting to VPN, the error 'unable to parse peer.subject as DN' is observed: diagnose debug application ike -1 diagnose debug enable
To resolve the error, change the PKI config to match the client certificate and test again:
|
