How to troubleshoot the error "IKE_CUSTOM_useCert: can't find Server-Cert" while connecting VPN client ?

Aruba Employee
Aruba Employee

Scenario: Connecting VIA client using EAP-tls with external server.

Note:   The controller authenticates the user certificate using EAP-TLS over IKEv2. The controller just acts as an EAP pass-through to an external EAP-compliant server. EAP termination on the controller is not supported for VIA clients.

This error is due to server cert miss from the controller.


Need to check if the server cert has been uploaded and mapped under VPN services.


and map the server & CA cert under VPN services.

Navigate to Configuration >> Under ADVANCED SERVICES >> choose VPN services and map the certificates.



Finally we need to map them in Certificate Groups.


CLI commands:

crypto-local isakmp certificate-group server-certificate VIA ca-certificate test


Version history
Revision #:
1 of 1
Last update:
‎07-14-2014 11:51 PM
Updated by:
Labels (1)
Search Airheads
Showing results for 
Search instead for 
Did you mean: