Re: [CalendarServer-users] Fwd: [CalendarServer-dev] HTTPS-Problem
Yes private key and cert are concated in one file tools is make-ssl-cert. Its a quick way to build a self-signed certificate couple. ----- Message d'origine ----- De: Georg Troska <georg.troska@uni-dortmund.de> Env: mercredi 18 février 2009 23:27 À: Cyrille Colin <colin@univ-metz.fr> Cc: calendarserver-users@lists.macosforge.org Objet: Re: [CalendarServer-users] Fwd: [CalendarServer-dev] HTTPS-Problem Hi, Are you sure private and public keys are stored in the same file? Georg Am 18.02.2009 um 22:19 schrieb Cyrille Colin:
hi, Self-signed certs works for me. I create it with createmake-ssl-cert /usr/share/ssl-cert/ssleay.cnf /calendar/certs/ calendar.pem and set .plist :
<!-- Public key --> <key>SSLCertificate</key> <string>/calendar/certs/calendar.pem</string>
<!-- Private key --> <key>SSLPrivateKey</key> <string>/calendar/certs/calendar.pem</string>
hope this help.
On mer., 2009-02-18 at 21:18 +0100, Georg Troska wrote:
Hi,
ok maybe this is a better forum to ask this question
Anfang der weitergeleiteten E-Mail:
Von: Georg Troska <georg.troska@uni-dortmund.de> Datum: 18. Februar 2009 15:08:13 MEZ An: calendarserver-dev@lists.macosforge.org Betreff: [CalendarServer-dev] HTTPS-Problem
Hi,
I have problems to get HTTPS running on the calendarserver. (Ubuntu-Intrepid) HTTP works fine now, but using HTTPS gives me an error-message in iCal:
"The account inforation could not be found - Unexpected error at the secure name resoltion (Error -9813). The servername <name> is maybe incorrect "
(This is translated from german)
I'm sure that HTTPS is running as I can reach it in the Browser - authentication is running as well
Thanks Georg
_______________________________________________ calendarserver-dev mailing list calendarserver-dev@lists.macosforge.org http://lists.macosforge.org/mailman/listinfo.cgi/calendarserver-dev
meanwhile I found out, that I have a logentry in /var/log/system.log on my client: --- Feb 18 21:14:01 regulus iCal[97893]: SMA: -[DAVRequest(Private) translateSSLError:]: { -9813 } Feb 18 21:14:01 regulus iCal[97893]: [DAVRequest _readStreamEvent]: SecTrustEvaluate failed. Failing with error: (null) ---
putting this into google made me a bit nervous when I read this: http://www.zimbra.com/forums/administrators/16397-caldav-issue-leopard.html
is it true that iCal cannot handle "selfmade SSL-Certs"? How can I put the cert on "always trust"?
I hope you can help. Thanks a lot Georg
_______________________________________________ calendarserver-users mailing list calendarserver-users@lists.macosforge.org http://lists.macosforge.org/mailman/listinfo.cgi/calendarserver-users
Georg Troska Experimentelle Physik IV TU Dortmund +49 231 755 3501
participants (1)
-
Cyrille Colin