Sunday, November 20, 2011

Using DDNS on ScreenOS Device

By default, DDNS (using DynDNS.org) does not work on ScreenOS device.

With everything correctly set, the system log still shows it does not work: PKI: Cannot build certificate chain for cert with subject name CN=members.dyndns.org,OU=Domain Control Validated - QuickSSL Premium(R),OU=See www.geotrust.com/resources/cps (c)10,OU=80401367,O.

The root certificate of members.dyndns.org (Equifax Secure Certificate Authority) is not installed on the ScreenOS device.  It is required to be installed manually.  Download the Equifax Secure CA root certificate to your local computer, then import it to your ScreenOS device.


After importing the CA cert, the DDNS works: Success response received for DDNS entry update for id 1 user "someuser" domain "someuser.homeip.net" server type "DYN" name "members.dyndns.org".