|
cosign-discuss at umich.edu
|
general discussion of cosign development and deployment
|
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Very weird errors
Phil,
what do you know, the CA was NOT on the web server, i had missed the
line where the web server was complaining (once) in the logs. Perhaps
the error could be made clearer?
Thanks Phil
Brett
On Mon, 2005-04-04 at 15:25, Phil Pishioneri wrote:
> On 4/3/05 10:55 PM, Brett Lomas wrote:
>
> >When some of our webservers connect I get the following error:
> >Apr 4 14:09:40 cerberus2 cosignd[18631]: f_starttls: snet_starttls:
> >error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca
> >
> >now normally i would attribute this to a CA not being installed on the
> >machine, but alas this is not the case. The web server's client
> >certificate details are:
> >...
> >
> >and on the cosign server the following CA certs are installed (along
> >with their hash values):
> >
> >
>
> Not brilliant ideas, but...
>
> The cosignd's CA is installed on the web server client? (And it wasn't
> upgraded to 1.1.1, and needs the path changed and hashing done?)
>
> -Phil
|