SonicWALL NetExtender certifcates validation and OTP request
Hi there,
using NetExtender there is an option that RDM never considered, "always trust certificates":
Instead of virtually digit "Y" every time, this will get rid of this request, having two main advantages:
- Skip a useless step (as you always want to accept it, even if it changes).
- Making interaction with OTP code request more straightforward*.
* If you need to enter the OTP and you have the "Y" digit, but in the past you manually pressed "A" to speed up the process, RDM will try to digit "Y" in the OTP request (even if there's no need for it in the certificate step anymore).
I don't know how to suggest managing it inside RDM, honestly, but I managed to not use "Automatically accept certificate" anymore and press "A" the first time I start a VPN entry. In this way, I have the OTP request showed without any glitch.
Hope to be helpful.
1f074240-7966-4ab5-8297-de965f297d2c.png
All Comments (4)
An idea:
Can be RDM able to detect if NetExtender is really asking for the certificate acceptance? In this way, you could program it to digit "A" only the first time instead of digit a blind "Y" every time.
I don't know if you can read from the prompt the sentence "Do you want to proceed?" or something else in the standard request.
Hello,
I'm not sure we have a surefire way for RDM to know whether NetExtender is currently asking for how to handle the certificate. What I'm worried about is whether we can properly catch this prompt, and whether it will always be written the same way, or if for example they decide to change the prompt or if you're using NetExtender in a different language, RDM would then fail to handle the prompt.
Maybe we could add a text field for you to write the 'expected prompt' for when you should send the certificate validation. It could be similar to what we do with our expected prompt/timeout system for the SSH shell entry. Do you think this would help in your scenario?
Regards,
Hubert Mireault
Sounds good!
I'll open a ticket with this information. Thank you!
Regards,
Hubert Mireault