[rabbitmq-discuss] Error with SSL
Jeffrey Becker
jeffrey.a.becker at gmail.com
Wed May 21 19:15:23 BST 2014
After some further debugging with openssl s_client I've produced the error
write:errno=104
On Wednesday, May 21, 2014 1:14:43 PM UTC-4, Jeffrey Becker wrote:
>
> The error being thrown by the C# client code is:
>
> None of the specified endpoints were reachable
> connection.start was never received, likely due to a network timeout
>
>
> On Tuesday, May 20, 2014 12:16:42 PM UTC-4, Jeffrey Becker wrote:
>>
>> I'm attempting to configure RabbitMQ with SSL using client certificates
>> for authentication on a windows server 2012 x64 box. The Erlang version
>> installed is OTP 17.0 for Windows x64,
>> Configuration is as such:
>> {rabbit, [
>> {ssl_listeners, [5671]},
>> {auth_mechanisms, ['EXTERNAL']},
>> {auth_backends, [rabbit_auth_backend_ldap,
>> rabbit_auth_backend_internal]},
>> {ssl_options, [{cacertfile,"D:\\RabbitMQ\\certs\\cacert.pem"},
>> {certfile,"D:\\RabbitMQ\certs\\rabbit.pem"},
>> {keyfile,"D:\\RabbitMQ\\certs\\rabbit.key"},
>> {verify,verify_peer},
>> {ssl_cert_login_from, common_name},
>> {fail_if_no_peer_cert,true}]}
>>
>> ]},
>>
>> Whenever I connect, the client throws an error and the log file gets an
>> entry like:
>>
>> error on AMQP connection <0.310.0>:
>> {ssl_upgrade_error,{options,{certfile,[68,58,92...
>>
>> I've gone through the SSL Trouble shooting guide and confirmed that:
>>
>> - The certs are in the PEM format
>> - The Broker is listening on the correct ports
>>
>>
>> The last bit of the trouble shooting guide indicates that "This is a
>> generic error that could have many causes. Make sure you are using the
>> recommended version of Erlang." Is there a version of Erlang I should be
>> using other than OTP 17.0?
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/attachments/20140521/a6765961/attachment.html>
More information about the rabbitmq-discuss
mailing list