Open smoser opened 2 years ago
This solves the error in the console, but when opening the browser it does not load, the browser is blank
I managed to solve the white page problem using
QTWEBENGINE_DISABLE_SANDBOX=1 OPENSSL_CONF=~/ssl.conf openconnect-sso -s vpnxxxxx.com.br
Using pyqt6 binding does also fix the white page that the browser shows. See #86
Thank you @smoser and @lucashtc . Your solutions solved it for me and got me unblocked on Ubuntu 22.04 when following my own instructions here: How to use "openconnect" (via the openconnect-sso
wrapper) with SAML and Duo two-factor authentication via Okta Single-Sign-on (SSO).
For anyone who needs more-explicit instructions, here's how I'd do it:
Create a ~/.my_ssl.conf
file:
gedit ~/.my_ssl.conf
Then paste the following into it:
# Custom configuration to solve some problems while using `openconnect-sso` in Ubuntu 22.04.
# See: https://github.com/vlaci/openconnect-sso/issues/81#issuecomment-1363355533
openssl_conf = openssl_init
[openssl_init]
ssl_conf = ssl_sect
[ssl_sect]
system_default = system_default_sect
[system_default_sect]
Options = UnsafeLegacyRenegotiation
Save it and close it.
Then run this:
VPN_SERVER_ADDRESS="myvpn.whatever.com" # example server address to connect to
VPN_SAML_GROUP="whatever-saml-whatever" # example SAML group name
VPN_USER="my.username@something.com" # example username
# or perhaps just this for the username:
# VPN_USER="my.username"
QTWEBENGINE_DISABLE_SANDBOX=1 OPENSSL_CONF=~/.my_ssl.conf openconnect-sso \
--server "${VPN_SERVER_ADDRESS}/${VPN_SAML_GROUP}" --user "${VPN_USER}"
Note that instead of calling QTWEBENGINE_DISABLE_SANDBOX=1 OPENSSL_CONF=~/.my_ssl.conf openconnect-sso ...
, you can also place those passed-in variables into your ~/.bashrc
file. export
is required for those, but not for the VPN*
variables I set above.
Add to the bottom of your ~/.bashrc
file:
# Custom configuration to solve some problems while using `openconnect-sso` in Ubuntu 22.04.
# See: https://github.com/vlaci/openconnect-sso/issues/81#issuecomment-1363355533
export QTWEBENGINE_DISABLE_SANDBOX=1
export OPENSSL_CONF=~/.my_ssl.conf
VPN_SERVER_ADDRESS="myvpn.whatever.com" # example server address to connect to
VPN_SAML_GROUP="whatever-saml-whatever" # example SAML group name
VPN_USER="my.username@something.com" # example username
# or perhaps just this for the username:
# VPN_USER="my.username"
Now log out of Ubuntu and log back in, or re-source your ~/.bashrc
file:
. ~/.bashrc
Then you can just run openconnect-sso
without those leading variables:
openconnect-sso --server "${VPN_SERVER_ADDRESS}/${VPN_SAML_GROUP}" --user "${VPN_USER}"
.my_ssl.conf is part of my eRCaGuy_dotfiles repo now too.
Thanks for your help on this!
I hit the error below today after an upgrade to Ubuntu 22.04 with newer openssl (3.0.2).
I poked for a little bit on trying a python code stackoverflow suggestion but was not successful.
The fix I found was from launchpad bug 1963834 with more information on openssl-users ml. Thanks to @hallyn for helping to find it.
Here it is for anyone interested: