I am not able to run openwsman 2.0.0/2.1.0 anyhow in ssl mode.
It fails and last shown message is 'can not open certificate file servercert.pem.'
I generated this certificate using the owsmangercert.sh which is copied to sysconf(i.e. /etc/openwsman) directory after installation.
Infact I created certificates using http://www.akadia.com/services/ssh_test_certificate.html
which is of the form *.cert but it also does not work.
I debug the sources and found that
Code at server/shttpd/config.c: line 109 returns the error. Code written in red gives error.
The same thing works perfectly file under 1.5.2.
Can you give me some clue on this?
The code snippet is:
static void
set_ssl(struct shttpd_ctx *ctx, void *arg, const char *pem)
{
…………….
…………
if ((CTX = SSL_CTX_new(SSLv23_server_method())) == NULL)
elog(E_FATAL, NULL, "SSL_CTX_new error");
else if (SSL_CTX_use_certificate_file(CTX, pem, SSL_FILETYPE_PEM) == 0)
elog(E_FATAL, NULL, "cannot open %s", pem);
else if (SSL_CTX_use_PrivateKey_file(CTX, pem, SSL_FILETYPE_PEM) == 0)
elog(E_FATAL, NULL, "cannot open %s", pem);
}
Need urgent openwsman ssl suggestion
Can anyone suggets me how to make openwsman 2.1.0 work with ssl certificate chain. I created certificate chain but it always says unable to open ssl-cert-file ......
Thogh it runs perfectly with ssl certificate that too we need to modify the code as mentioned in my earlier mails.
-Manoj
Now I am able to run
Now I am able to run openwsman 2.1.0 in ssl mode but I had to comment the new code
else if (SSL_CTX_use_certificate_chain_file(CTX, pem) == 0).
I used old code in 2.1.0
else if (SSL_CTX_use_certificate_file(CTX, pem, SSL_FILETYPE_PEM) == 0).
And it started working.
But in 2.0.0 the old code does not work.