Cisco VPN - ASA 5505 Setup - SW error occured, hash verification failed
Hi All,
So my client needs this VPN setup..like RIGHT AWAY and this is a first for me.
I inherited this Cisco ASA 5505 device and was told that there was working VPN on it. The one person who used to VPN in was using the Cisco Easy Connect client (which I cannot find an executable for or logi to cisco to get)
So here is what I have done.. I have logged into the ASA 5505 and run the IPSec Remote Access Wizard for a Remote Gateway. I also installed the Cisco VPN Client on my Windows 7 (Version 5)
In the VPN Client I entered the router WAN IP. When I try and connect it says contacting the sexurity gateway for about 2 seconds and then fails. In the VPN client log I get this
23 08:20:53.872 09/08/10 Sev=Warning/2 IKE/0xE300009B
Failed to authenticate peer (Navigator:915)
24 08:20:53.872 09/08/10 Sev=Warning/2 IKE/0xE30000A7
Unexpected SW error occurred while processing Aggressive Mode negotiator:(Navigator:2263
25 08:21:36.203 09/08/10 Sev=Warning/3 IKE/0xE3000057
The received HASH payload cannot be verified
26 08:21:36.203 09/08/10 Sev=Warning/2 IKE/0xE300007E
Hash verification failed... may be configured with invalid group password.
27 08:21:36.203 09/08/10 Sev=Warning/2 IKE/0xE300009B
Failed to authenticate peer (Navigator:915)
28 08:21:36.204 09/08/10 Sev=Warning/2 IKE/0xE30000A7
Unexpected SW error occurred while processing Aggressive Mode negotiator:(Navigator:2263
29 08:21:38.246 09/08/10 Sev=Warning/3 IKE/0xE3000057
The received HASH payload cannot be verified
30 08:21:38.247 09/08/10 Sev=Warning/2 IKE/0xE300007E
Hash verification failed... may be configured with invalid group password.
31 08:21:38.248 09/08/10 Sev=Warning/2 IKE/0xE300009B
Failed to authenticate peer (Navigator:915)
32 08:21:38.250 09/08/10 Sev=Warning/2 IKE/0xE30000A7
Unexpected SW error occurred while processing Aggressive Mode negotiator:(Navigator:2263
I need to get this up and running asap, please help!!
So my client needs this VPN setup..like RIGHT AWAY and this is a first for me.
I inherited this Cisco ASA 5505 device and was told that there was working VPN on it. The one person who used to VPN in was using the Cisco Easy Connect client (which I cannot find an executable for or logi to cisco to get)
So here is what I have done.. I have logged into the ASA 5505 and run the IPSec Remote Access Wizard for a Remote Gateway. I also installed the Cisco VPN Client on my Windows 7 (Version 5)
In the VPN Client I entered the router WAN IP. When I try and connect it says contacting the sexurity gateway for about 2 seconds and then fails. In the VPN client log I get this
23 08:20:53.872 09/08/10 Sev=Warning/2 IKE/0xE300009B
Failed to authenticate peer (Navigator:915)
24 08:20:53.872 09/08/10 Sev=Warning/2 IKE/0xE30000A7
Unexpected SW error occurred while processing Aggressive Mode negotiator:(Navigator:2263
25 08:21:36.203 09/08/10 Sev=Warning/3 IKE/0xE3000057
The received HASH payload cannot be verified
26 08:21:36.203 09/08/10 Sev=Warning/2 IKE/0xE300007E
Hash verification failed... may be configured with invalid group password.
27 08:21:36.203 09/08/10 Sev=Warning/2 IKE/0xE300009B
Failed to authenticate peer (Navigator:915)
28 08:21:36.204 09/08/10 Sev=Warning/2 IKE/0xE30000A7
Unexpected SW error occurred while processing Aggressive Mode negotiator:(Navigator:2263
29 08:21:38.246 09/08/10 Sev=Warning/3 IKE/0xE3000057
The received HASH payload cannot be verified
30 08:21:38.247 09/08/10 Sev=Warning/2 IKE/0xE300007E
Hash verification failed... may be configured with invalid group password.
31 08:21:38.248 09/08/10 Sev=Warning/2 IKE/0xE300009B
Failed to authenticate peer (Navigator:915)
32 08:21:38.250 09/08/10 Sev=Warning/2 IKE/0xE30000A7
Unexpected SW error occurred while processing Aggressive Mode negotiator:(Navigator:2263
I need to get this up and running asap, please help!!
Nico Eisma
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008060f25c.shtml
hope that helps :-)
ASKER
Thanks I followed this guide to set it up using asdm
I will review it again but does this help with the errors I'm getting?
I will review it again but does this help with the errors I'm getting?
hi btny,
check if the tunnel group attributes are entered correctly in the VPN server and the same are entered in the connection profile of the client software, including the lower case or upper case in which the config is entered
check if the tunnel group attributes are entered correctly in the VPN server and the same are entered in the connection profile of the client software, including the lower case or upper case in which the config is entered
This "Hash verification failed... may be configured with invalid group password." indicate that the group password on the client and the group password on the ASA are not matching. pucnh them in again or simplify them by using "1234" as a test.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.