[STH]

I tried several times now without success:

- 10.3.1 (no Cisco client pre-installed)
- Installation of most recent Cisco Client 4.0.2C without errors
- on reboot or manual "ciscovpn start" I always get an error "kext is not authentic" - vpn subsystem not available.

I checked permissions etc. Downloaded from different sites. Tried 3.7 (installer doesn't even start). Seems like 10.3.1 doesn't like the ciscovpn.kext. Anyone else having seen this?

[mousehouse]

I'm running Cisco's VPN client on 10.3.1 without problems... i'll check the version for you. Have you tried using the GUI?

[STH]

Yes, I tried the GUI as well.
Loading the ciscovpn.kext I first got an error. After modifying the permissions loading worked without error. But the client itself still complains that the subsystem is not avaiable. Strange.

[STH]

Ok, it seems to work now. Here's what I did:

-installing the client 4.0.2(C)
-chown -R root:wheel /System/Library/StartupItems/CiscoVPN/
-chmod -R go-w /System/Library/StartupItems/CiscoVPN/
-same for: /System/Library/Extensions/CiscoVPN.kext/
-chown -R root:wheel /usr/local/bin (I only have the vpn stuff there)

Loading the kext then worked.
I added the line "USELegacyIKEPort=0" to my profiles (as seen at Cisco and MacOSXHints) and fired up the CiscoVPN GUI.

>> It's working!

So, I guess it boils down to a permission problem...