If the Barracuda NextGen Firewall F-Series SSL VPN you are connecting to requires client certificate authentication, you must install the client certificate on the mobile device before it can connect. Both Android and iOS require PKCS#12 certificates. On iOS, the cudacert extension must be appended to the certificate name for the certificate to be associated with CudaLaunch.
- iOS 8.0 or later
- Android 5.0 or later
- Configure the SSL VPN service for client certificate authentication. For more information, see How to Configure Client Certificate Authentication for the SSL VPN.
Importing a Client Certificate on Android Devices
Android can import certificates in PKCS#12 format with the p12 extension. The certificate can be installed on the device in multiple ways:
- Send the client certificate to the device by email. Click on the certificate attachment.
- Copy the certificate directly to the device and install it to the Android Trusted Credentials certificate store from there.
When logging into CudaLaunch, you will be prompted to select a client certificate from the list. Select the certificate and click Allow to continue with the login.
Importing a Client Certificate on iOS Devices
In iOS, the client certificate must be installed by the app using that certificate. To associate the client certificate with CudaLaunch, rename the PCKS#12 certificate p12 extension to cudacert. E.g., my_root_certificate.p12 to my_root_certificate.cudacert.
- Copy the client certificate with the cudacert extension to the iOS device. You can do this as an attachment to an email or via a cloud storage service.
- Click on the certificate. Tap Open in "CudaLaunch". CudaLaunch starts.
- Enter the certificate password and tap OK.
- Log in with CudaLaunch. Select the client certificate you just installed when prompted.
- Continue with the login process.