Hi, I'm trying to get the communications TLS encrypted. dir <-> fd, console <-> dir, dir <-> sd works right now. fd <-> sd does not work.
the errors after trying to start a backup are: 14-Dec 20:58 nudel-fd: client-nudel-files.2006-12-14_20.57.59 Fatal error: Authorization problem: Remote server requires TLS. 14-Dec 20:58 nudel-fd: client-nudel-files.2006-12-14_20.57.59 Fatal error: Failed to authenticate Storage daemon. 14-Dec 20:58 nudel-dir: client-nudel-files.2006-12-14_20.57.59 Fatal error: Socket error on Storage command: ERR=Broken pipe 14-Dec 20:58 nudel-sd: client-nudel-files.2006-12-14_20.57.59 Fatal error: Authorization problem: Remote server did not advertise required TLS support. 14-Dec 20:58 nudel-sd: client-nudel-files.2006-12-14_20.57.59 Fatal error: Incorrect authorization key from File daemon at client rejected. Please see http://www.bacula.org/rel-manual/faq.html#AuthorizationErrors for help. 14-Dec 20:58 nudel-sd: client-nudel-files.2006-12-14_20.57.59 Fatal error: Unable to authenticate File daemon 14-Dec 20:58 nudel-dir: client-nudel-files.2006-12-14_20.57.59 Error: Bacula 1.38.11 (28Jun06): 14-Dec-2006 20:58:05 the config parts are: bacula-dir.conf: Storage { Name = File Address = nudel # N.B. Use a fully qualified name here SDPort = 9103 Password = "" Device = FileStorage Media Type = File Maximum Concurrent Jobs = 20 TLS Enable = yes TLS Require = yes TLS CA Certificate File = /usr/local/etc/bacula-certs/cacert.pem TLS Certificate = /usr/local/etc/bacula-certs/nudel.cert TLS Key = /usr/local/etc/bacula-certs/nudel.nopass.key } bacula-fd.conf: Storage { # definition of myself Name = nudel-sd SDAddresses = { ip = { addr = nudel ; port = 9103 } ip = { addr = localhost ; port = 9103 } } WorkingDirectory = "/var/db/bacula" Pid Directory = "/var/run" Maximum Concurrent Jobs = 20 TLS Enable = yes TLS Require = yes TLS Verify Peer = no TLS CA Certificate File = /usr/local/etc/bacula-certs/cacert.pem TLS Certificate = /usr/local/etc/bacula-certs/nudel.cert TLS Key = /usr/local/etc/bacula-certs/nudel.nopass.key } hmm... what is wrong here? -- Oliver Lehmann http://www.pofo.de/ http://wishlist.ans-netz.de/ ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
