I created an OpenVPN server via Omada controller on ER605. I then exported the profile. When I tried to connect with my clients using the ER605-generated profile, I got "Peer certificate verification failure".

1) I have tried using the same profile on multiple clients: MacBook, iPhone, and Android phone. All go the same error.

2) I know my OpenVPN clients are working because I have a 2nd OpenVPN server on my NAS. When I redirect port 1194 to the NAS, I can connect with the NAS-generated .opvn.

3) I searched the internet, and there was a clue that the time stamp is potentially out of sync. I have checked the time on the Omada controller, and the time is correct and synced. The problem is that I don't know if ER605's time is synced. The Omada interface hides ER605's time setting, and it's hard to determine if it's out of sync. I am able to decode the certificate via OpenVPN Decoder website (which this form won't let me post the link) and determined that the certificates are within the valid dates. 

Right now, I'm left to believe that ER605 is generating invalid .opvn files. I've tried regenerating the profiles several times now. Any clues?

Regards,

Tim