Quorum witness 5.0.2 SSL with domain certificates
Posted: Wed Oct 12, 2022 10:15 am
Hi
I have problem with SSL configuration. Without SSL quorum is working, but the customer requires it.
I think, that qw-server cert is corect - the guide is clear - but there is no guide for qw-client.
No i have
showcert -service qw-client
Service Commonname Type Enddate Fingerprint
qw-client xxxxxxxxxxxxxxxxxx.cz csr -- finger
qw-client SRV-INTERNALCA-CA intca Nov 20 05:53:20 2029 GMT finger
qw-client* SRV-ROOTCA-CA rootca Nov 20 05:53:20 2029 GMT finger
showcert -service qw-server
Service Commonname Type Enddate Fingerprint
qw-server* SRV-ROOTCA-CA rootca Nov 20 05:53:20 2029 GMT finger
But
setrcopytarget witness check -ssl xxx.xxx.xxx.xxx
error: No route to Quorum Witness at xxx.xxx.xxx.xxx from any node.
If using ssl option, verify certificate configuration and consult Quorum Witness logs.
Network is ok, if i disable SSL on quorum server, it's working.
Have someone this config working ?
Thanks
I have problem with SSL configuration. Without SSL quorum is working, but the customer requires it.
I think, that qw-server cert is corect - the guide is clear - but there is no guide for qw-client.
No i have
showcert -service qw-client
Service Commonname Type Enddate Fingerprint
qw-client xxxxxxxxxxxxxxxxxx.cz csr -- finger
qw-client SRV-INTERNALCA-CA intca Nov 20 05:53:20 2029 GMT finger
qw-client* SRV-ROOTCA-CA rootca Nov 20 05:53:20 2029 GMT finger
showcert -service qw-server
Service Commonname Type Enddate Fingerprint
qw-server* SRV-ROOTCA-CA rootca Nov 20 05:53:20 2029 GMT finger
But
setrcopytarget witness check -ssl xxx.xxx.xxx.xxx
error: No route to Quorum Witness at xxx.xxx.xxx.xxx from any node.
If using ssl option, verify certificate configuration and consult Quorum Witness logs.
Network is ok, if i disable SSL on quorum server, it's working.
Have someone this config working ?
Thanks