Issue
When you use Mobile VPN with SSL to connect to a Firebox with Fireware 11.10.5 or higher that has an untrusted web server certificate, the client always displays a certificate warning. If the user chooses to bypass the security warning, the warning continues to appear for subsequent connections to that Firebox.
Workaround/Solution
To avoid the certificate warning message, your client device must trust the Firebox web server certificate. Your client will trust the certificate if:
The Firebox Web Server Certificate matches the IP address or domain name of the Firebox external interface, and is signed by a trusted certificate authority.The Firebox Web Server Certificate is self-signed and matches the IP address or domain name of the Firebox external interface, and you import the certificate on your client device's certificate storage.
To learn more about the Firebox Web Server Certificate, see Configure the Web Server Certificate for Firebox Authentication.To learn how to import a certificate on a client device, see Import a Certificate on a Client Device.
