Replies: 1 comment
-
You say you want self signed certificates for a client and server, but really you appear to be working to use a private CA to sign certificates for a client and server, and to trust that CA to authenticate connections between them. Do you expect to deploy more clients and servers that will trust this shared CA? Or this is only ever going to be a single pair, in which case, you may be simpler to bypass the CA, and directly authorise connections from the peer certificate (client or server)? Is this a lab or development test bed, or a tentative "production" deployment? In terms of what you're doing wrong:
|
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I'm currently doing this:
Server code:
After this, I did:
And:
So I copied
ca.pem
to/etc/ssl/certs
and rehashed pem files.And after that
s_client
started working from within the same host.Then I copied
client.pem
to a different host and added it to trust store in that machine.And I did
s_client
from the other machine, it is showing:What am I doing wrong? Please assist.
Beta Was this translation helpful? Give feedback.
All reactions