[dev.icinga.com #12201] Improve error messages for failed certificate validation #4386
Labels
area/distributed
Distributed monitoring (master, satellites, clients)
enhancement
New feature or request
Milestone
This issue has been migrated from Redmine: https://dev.icinga.com/issues/12201
Created by pef on 2016-07-21 20:04:12 +00:00
Assignee: gbeutner
Status: Resolved (closed on 2016-07-25 07:25:04 +00:00)
Target Version: 2.5.0
Last Update: 2016-08-22 11:55:57 +00:00 (in Redmine)
Certificate validation for distributed setups lacks a proper explanation (from OpenSSL). In my case, we've been using SSL certificates with NsCertType = server, which failed the certificate validation as its purpose is not that of a client certificate. While OpenSSL provides these information, Icinga has so far only logged that the certificate is not signed by the CA, which is wrong. So an adjustment might be required.
Attachments
Changesets
2016-07-25 07:22:35 +00:00 by pef 431c110
2016-07-25 07:23:19 +00:00 by gbeutner be21a5a
The text was updated successfully, but these errors were encountered: