Basic Aerohive L3 BR Setup

  • 1
  • Question
  • Updated 3 years ago
  • Answered


I have an existing Aerohive wireless solution to which I have purchased a CVG and a BR100 and a BR200.

I am attempting to follow the instructions given within the various guides to create a L3 VPN between the BR100 and the CVG.

The CVG has been configured with 2 vNIC's (One on DMZ and one on LAN) and has been licenced and appears in HM and I have given it a basic configuration (Name etc.).

The BR100 also appears in HM.

I have opened UDP 500 and 4500 on my firewall to the DMZ interface of the CVG.

Where I am stuck is when I go to create a policy...

I create a policy and select the Branch Routing option and everything goes OK until I get to the Layer 3 IPSEC VPN section... In here I select to create a new VPN and select my CVG. Underneath this there is this section:

IPsec VPN Certificate Authority Settings

It has pre-selected Default_CA.pem and Default-Server_cert.pem and Default-Server_key.pem.

If I click OK on all this I get an error stating:

The server certificate was not issued with the specified CA certificate

What exactly am I supposed to be doing at this point?

Photo of BeeKeeper


  • 9 Posts
  • 0 Reply Likes

Posted 3 years ago

  • 1
Photo of Deven Ducommun

Deven Ducommun, Beta Program Manager

  • 53 Posts
  • 5 Reply Likes
Hi what you can do is go through the process or creating a new CA as well as default cert and key or you can try to hit the checkbox that say do not validate the server key file.  Either of these options should allow you to get past that point in the configuration.