No connection with PKCS#11 Athena IDProtect Token

403 views
Skip to first unread message

sbam...@gmail.com

unread,
Dec 28, 2014, 11:31:57 AM12/28/14
to tunnelbli...@googlegroups.com
Hi,

I can not connect with Tunnelblick when using a PKCS#11 USB token. I use Athene IdProtect and have installed the Athena middleware that works fine.
I checked the configuration with Linux and there is no problem to connect to the VPN server.

The log gives:

2014-12-28 17:28:05 *Tunnelblick: OS X 10.10.1; Tunnelblick 3.4.2 (build 4055.4161)
2014-12-28 17:28:05 *Tunnelblick: Attempting connection with openvpn_sp_client using shadow copy; Set nameserver = 1; monitoring connection
2014-12-28 17:28:05 *Tunnelblick: openvpnstart start openvpn_sp_client.tblk 1337 1 0 1 0 16688 -ptADGNWradsgnw 2.3.6
2014-12-28 17:28:05 OpenVPN 2.3.6 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on Dec  1 2014
2014-12-28 17:28:05 library versions: OpenSSL 1.0.1j 15 Oct 2014, LZO 2.08
2014-12-28 17:28:06 *Tunnelblick: openvpnstart log:
     Tunnelblick: 
     OpenVPN started successfully. Command used to start OpenVPN (one argument per displayed line):
     
          /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3.6/openvpn
          --daemon
          --log
          /Library/Application Support/Tunnelblick/Logs/-SUsers-Sxxx-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sopenvpn_sp_client.tblk-SContents-SResources-Sconfig.ovpn.1_0_1_0_16688.1337.openvpn.log
          --cd
          /Library/Application Support/Tunnelblick/Users/xxx/openvpn_sp_client.tblk/Contents/Resources
          --config
          /Library/Application Support/Tunnelblick/Users/xxx/openvpn_sp_client.tblk/Contents/Resources/config.ovpn
          --cd
          /Library/Application Support/Tunnelblick/Users/xxx/openvpn_sp_client.tblk/Contents/Resources
          --management
          127.0.0.1
          1337
          --management-query-passwords
          --management-hold
          --script-security
          2
          --up
          /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw
          --down
          /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -f -ptADGNWradsgnw

2014-12-28 17:28:05 *Tunnelblick: openvpnstart starting OpenVPN
2014-12-28 17:28:06 PKCS#11: Adding PKCS#11 provider '/Library/Application Support/Athena/libASEP11.dylib'
2014-12-28 17:28:06 *Tunnelblick: Established communication with OpenVPN
2014-12-28 17:28:07 *Tunnelblick: No 'post-disconnect.sh' script to execute
2014-12-28 17:28:07 *Tunnelblick: Expected disconnection occurred.

Any hints ?

Ciao
 bama

jkbull...gmail.com

unread,
Dec 28, 2014, 11:57:28 AM12/28/14
to tunnelbli...@googlegroups.com, sbam...@gmail.com
PKCS#11 seems to be broken in Tunnelblick on Yosemite. There are several posts in the discussion group about that.

Perhaps it works in Viscosity.

sbam...@gmail.com

unread,
Dec 29, 2014, 8:08:54 AM12/29/14
to tunnelbli...@googlegroups.com, sbam...@gmail.com
unfortunately not :( I tried Viscosity first,  but Tunnelblick seems to have better Diagnostics.
Thanks for your answer I thought this could be a Athena only problem.

Ciao
Reply all
Reply to author
Forward
0 new messages