ziti-tunnel-sdk-c icon indicating copy to clipboard operation
ziti-tunnel-sdk-c copied to clipboard

Published 20 hours ago verified publisher icon openziti

ottca and autoca enrollment fail silently

Open qrkourier opened this issue 1 month ago • 0 comments

autoca method uses the reusable CA JWT, which has a valid signature, with a cert from the external CA

❯ ZITI_TIME_FORMAT=utc ZITI_LOG=4 TLSUV_DEBUG=4 ./ziti-edge-tunnel enroll --jwt ./kenlabCA.jwt --key ./intermediate/keys/kenlab1.key --cert ./intermediate/certs/kenlab1.cert

ottca method uses a one-time JWT, which has a valid signature, with a cert from the external CA

❯ ZITI_TIME_FORMAT=utc ZITI_LOG=4 TLSUV_DEBUG=4 ./ziti-edge-tunnel enroll --jwt ./kenlab2.jwt --key ./intermediate/keys/kenlab2.key --cert ./intermediate/certs/kenlab2.cert

Both exit with code 1 and produce no stdout nor stderr.

qrkourier avatar May 09 '24 13:05 qrkourier