Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-8729

SSL: mongod started with --sslWeakCertificateValidation, mongo can't connect with self-signed cert

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Works as Designed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None
    • Operating System:
      ALL

      Description

      ubuntu@ip-10-36-133-56:~/mongodb-linux-x86_64-subscription-ubuntu1104-2.4.0-rc0$ ./bin/mongod --dbpath ./data/ --sslOnNormalPorts --sslPEMKeyFile ../sslCA/gregorFreeBSD.pem  --replSet rs1 --smallfiles  --sslCAFile ../sslCA/cacert.pem --sslWeakCertificateValidation

      ubuntu@ip-10-36-133-56:~/mongodb-linux-x86_64-subscription-ubuntu1104-2.4.0-rc0$ ./bin/mongo --ssl --sslPEMKeyFile ./smoke.pem 
      MongoDB shell version: 2.4.0-rc0
      connecting to: test
      Tue Feb 26 10:41:57.332 DBClientCursor::init call() failed
      Tue Feb 26 10:41:57.333 Error: DBClientBase::findN: transport error: 127.0.0.1:27017 ns: admin.$cmd query: { whatsmyuri: 1 } src/mongo/shell/mongo.js:112
      exception: connect failed

      Tue Feb 26 10:41:57.322 [initandlisten] connection accepted from 127.0.0.1:54975 #3 (1 connection now open)
      Tue Feb 26 10:41:57.331 [conn3] ERROR: SSL peer certificate validation failed:self signed certificate
      Tue Feb 26 10:41:57.331 [conn3] SocketException handling request, closing client connection: 9001 socket exception [6] 

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            gregor Gregor Macadam
            Participants:
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: