I'm trying to use Pulse Secure Client for Linux installed with deb-package version 9.0R2-819.
I cannot use the PulseClient_x86_64.sh because the VPN server has MFA enabled.
When I try to connect to the server with pulseUi, I get the following error message:
Unable to load page
Problem occurred while loading the URL https://<VPN url here>
Unacceptable TLS certificate
The server certificate CA is trusted on my machine and connecting to the endpoint with, e.g., Chrome does not show any certificate errors.
However, I discovered that running gnutls-cli shows the following error:
- Status: The certificate is NOT trusted. The certificate chain uses insecure algorithm.
*** PKI verification of server certificate failed...
*** Fatal error: Error in the certificate.
*** handshake has failed: Error in the certificate.
Running gnutls-cli again with --verify-allow-broken connects successfully.
I guess using the same flag from pulseUi would allow me to connect to the endpoint, but there is no such flag present at the moment. Since the VPN server works seamlessly with Windows and OS X, I'm not getting any support from my organization to fix the certificates.