keyankay
keyankay
@sandman I am also facing the same issue. Can you please share the ASN.1 after manual tagging ?
Thank you for the link Please find the output of server.pem ``` openssl x509 -in /root/cfssl/server.pem -text -noout Certificate: Data: Version: 3 (0x2) Serial Number: 31:ea:e0:8e:fd:9a:d7:5a:0c:4b:2b:8f:4e:c4:74:fb:33:c6:5f:86 Signature Algorithm: sha256WithRSAEncryption Issuer:...
I still get the same error (used 2 options with and without 0.0.0.0). Same issue both the times ./etcd --client-cert-auth --trusted-ca-file=/root/cfssl/ca.pem --cert-file=/root/cfssl/server.pem --key-file=/root/cfssl/server-key.pem --advertise-client-urls https://10.53.70.188:2379 --listen-client-urls https://0.0.0.0:2379 2017-09-26 09:29:50.594169 I...
I also checked in 3.2.7, the problem exists. I installed etcd 3.1.10 and i do not see the issue. I sense this is an etcd bug [root@vm-188 etcd-v3.1.10-linux-amd64]# ./etcd --client-cert-auth...
I did with another set with the extended key usage, but not self signed (With a intermediate CA). I get a different error when i do with intermediate and CA...
I generated the certificates (in two methods). Second method is at the end of this comment First Method: Step by step is mentioned here https://jamielinux.com/docs/openssl-certificate-authority/appendix/root-configuration-file.html However please find the concise...
I tried again with CA certificate with X509V3 Subject Alternative Name using version etcd-v3.1.10 (where there is no error observed in etcd side). Certificates generated as mentioned in https://coreos.com/os/docs/latest/generate-self-signed-certificates.html in...
@rezie Did you try with both client and server certificate ?