Navigation


Opened 8 years ago

Last modified 8 years ago

#51 new defect

The certificate is not trusted (unknown CA? expired?)

Reported by: achinthau Owned by:
Priority: major Milestone:
Component: contrib Version:
Keywords: Cc: dev@freediameter.net
Blocked By: Blocking:

Description

hi team
i'm new for the freeDiameter.
i install freeDiameter-1.2.0 for the ubuntu

Distributor ID: Ubuntu
Description: Ubuntu 12.04 LTS
Release: 12.04
Codename: precise

i install all dependencies as "INSTALL.Ubuntu" file
AND INSTALL file

then copy freeDiameter.conf.sample file to /usr/local/etc/freeDiameter/freeDiameter.conf

i insert following lines to the content of it

TLS_CA="/usr/share/doc/libssl-doc/demos/easy_tls/cert.pem";
Identity="localhost.localdomain";

then i try to start it "freeDiameterd " command
it gives

NOTI libfdproto '1.2.0' initialized.
NOTI libgnutls '2.12.14' initialized.
NOTI libfdcore '1.2.0' initialized.
ERROR - The certificate is not trusted (unknown CA? expired?)
ERROR - The certificate hasn't got a known issuer.
ERROR ERROR: in '((fd_conf_parse()))' :Invalid argument
ERROR ERROR: in '(fd_core_parseconf(conffile))' :Invalid argument
FATAL! Initiating freeDiameter shutdown sequence (1)
NOTI freeDiameterd framework is stopping...
NOTI Shutting down server sockets...
NOTI Sending terminate signal to all peer connections

how can i solve this error and start it.

thanking you.
Achintha.

Change History (1)

comment:1 Changed 8 years ago by Administrator

Hi,

The two important lines are the TLS_Cred=... and TLS_CA=...

According to your comment, you added a CA directive, however is your TLS_Cred certificate signed by this CA ?

Seb.

Note: See TracTickets for help on using tickets.