-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PowerDNS: "tls: failed to verify certificate: x509: certificate signed by unknown authority" #20
Comments
Hi @mathieumd, thanks for testing and giving your feedback! The communication between happyDomain and the provider/server is based on the capabilities offered by dnscontrol. For 2., we added an option to allow insecure connections, and also a field to paste the expected certificate. |
Perfect! And very wise to allow to paste our certificate, too! (While I'm at it, pasting the CA certificate -- and not the server certificate -- would be even better, I think, as it would not fail in some years when the server cert will be renewed) |
In fact, this is the case: happyDomain/dnscontrol@eacc88e#diff-e0a3737df14600dcef23c81735c4dfb69279c3d78bbd52a542767a86ac365ef5R117 The given certificate replaces the default certificates store. So it should work with both a root, an intermediate or a server certificate! |
Confirmed! Thank you! |
Adding a PowerDNS provider works, but when trying to connect it fails because it's use a private TLS certificate:
Shouldn't you:
The text was updated successfully, but these errors were encountered: