TLS client: In state cipher received SERVER ALERT: Fatal - Unknown CA error enabling x509 cert auth for replcation #2964
Unanswered
raulmartinezr
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi,
I try to configure client certificate authentication in the following scenario with couchDB 3.1.0
However, when everything seems to be well configured I see the following errors
Client side
Server Side
It seems client does not trust server CA, but it should do. I reproduced the same connecttion with openssl and curl, and it's working in both cases
Below relevant configuration in both sides, client and server
Remark: all certificates are signed by same intermediate CA (all have the same validation path) and both, root and intermediate CAs are included in /opt/couchdb/etc/ssl/ca-chain.cert.pem
Client
Server
Beta Was this translation helpful? Give feedback.
All reactions