Guest

Preview Tool

Cisco Bug: CSCte63806 - Doc: VPNClient: document CvpndSignHash

Last Modified

Feb 22, 2014

Products (1)

  • Cisco VPN Client

Known Affected Releases

all

Description (partial)

Symptom:

VPN Client users with smartcards always need to re-authenticate at rekey or get just disconnected after upgrading past version 5.0.4.

Conditions:

This is because of a fix that went into the vpnclient for CSCsm82775. 

That bug was because some clients need to re-authenticate at rekey, but the old client was not doing this causing the clients to disconnect.

To fix this a parameter was introduced: CvpndSignHash

If you configure 

CvpndSignHash=1 

in the main section of vpnclient.ini then the vpnclient will 'cache' the authentication. With


CvpndSignHash=0

or nothing configured, so the default., the authentication will not get cached and the user will get prompted to re-authenticate.

The 'hash' in the parameter is due to the technical details: the hash signing of the private key is done by vpngui.exe instead of by cvpnd.exe (the main VPN service) by default now.

This is only for Windows XP or higher.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.