Was wondering if anyone could point me towards what mender.conf configuration I should be using with hosted mender? Maybe I didn't search hard enough but I couldn't find this documented anywhere.
At the moment I'm using:
(Removed parts of the config that aren't related to the management server).
Does this look ok? From the 'default' config I removed the skipverify, changed the protocol to https and removed the ServerCertificate. However now when the mender client boots up it informs me that "Server certificate not provided. Trusting all servers." which I assume is not ideal! I was under the impression that hosted mender used all signed CA certs so I should be fine if I just install the ca-certificates package? How can I inform the client to only trust officially signed certs? Looking up the "todo" in the source code is a bit worrying as well:
https://github.com/mendersoftware/mender/blob/1.7.x/client/client.go#L310
Appreciate any help,
Sam.