I am running a RedHat Enterprise Linux 7.3 server with NetworkManager 1.4 that needs periodic access over VPN to a client's network using openconnect 7.06-1.el7. I can use nmcli
to connect with the --ask
option without problems, but it obstinately refuses to let me supply a password automatically.
I followed the instructions from a previous question but whether I restart NetworkManager, use nmcli con reload
, or reboot the whole system, it just ignores the [vpn-secrets]
section in the configuration file.
[connection]id=Client VPN Interfaceuuid=9f0d7d19-8bdf-40e1-9fc8-abce32cda118type=vpnpermissions=secondaries=[vpn]authgroup=Compgateway=client.gateway.compassword-flags=0service-type=org.freedesktop.NetworkManager.openconnectuser-name=myuser[vpn-secrets]password=mypass[ipv4]dns-search=method=auto[ipv6]addr-gen-mode=stable-privacydns-search=method=auto
The error message that I receive is:
A password is required to connect to 'Client VPN Interface'.Warning: password for 'vpn.secrets.gateway' not given in 'passwd-file' and nmcli cannot ask without '--ask' option.Error: Connection activation failed: no valid VPN secrets.
If I use the same password with --ask
, it works. If I try to supply a passwd-file
, it demands that I also add vpn.secrets.cookie
and vpn.secrets.gwcert
, neither of which I know or need if I use the prompts. If I set cookie-flags=4
and gwcert-flags=4
, it still requires them.
May I please have some help?