DSR-250 Configuring SSLVPN according to Dlink Tech Support website.
- Open a browser to https://MY_DSR_PUBLIC_IP:8443/portal/ssltest (the name I gave to the layout)
- log in, navigate to VPN page, launch VPN
- popup window appears, a msg about keeping the browser window open to preserve session
- need to confirm popup and running Java app
GETTING THE FOLLOWING ERROR:
--------------------------------------------------
"Application blocked for Security"
- Certificate has been revoked.
- The application will not be executed!
- Name: VPInstaller
- Location: https://MY_DSR_PUBLIC_IP:8443
Further, clicking 'More Information...' yields:
java.security.cert.CertificateRevokedException:
Certificate has been revoked,
reason: KEY_COMPROMISE,
revocation date: Wed Sep 02 20:00:00 EDT 2015,
authority: CN=VeriSign Class 3 Code Signing 2010 CA,
OU=Terms of use at https://www.verisign.com/rpa (c)10,
OU=VeriSign Trust Network,
O="VeriSign, Inc.",
C=US, extension OIDs
Searching around I came across a couple of news releases explaining that DLINK had inadvertently released the private-keys and passphrases for the
certificates on several of their devices. This news came out in Sept 2015, curiously corresponding to the date of the above Java exception revocation
date. I won't bother with why a firmware update hasn't been pushed out to every device ever created by DLINK, and/or why this update due to
compromised private keys isn't splashed all over the DLINK support forums and support website. But it would be nice to get this working
Question is: How do I install a new certificate? I'm already at the latest FW:
Hardware: A2
Firmware: 2.02B701C_WW
Any help very much appreciated.
- dharma
