Error while connecting through spring boot client(AMQP) the SSL enabled Rabbitmq server (on windows)
2,001 views
Skip to first unread message
ruchika nema
Jun 21, 2019, 1:02:06 AM6/21/19
to rabbitmq-users
Hi All,
I am running rabbitmq server locally with SSL enabled at port 5671 using self signed certificates (.pem format). Server is working fine.
The problem is there while connecting through spring boot java client. For client also self signed certificates in .p12 format configured.
Below is my spring boot configuration.
spring.rabbitmq.host=localhost spring.rabbitmq.port = 5671 spring.rabbitmq.username = test spring.rabbitmq.password = test spring.rabbitmq.ssl.enabled=true spring.rabbitmq.ssl.algorithm=TLSv1.2 spring.rabbitmq.ssl.key-store=C:\\SSL-certificates\\client-certificate.p12 spring.rabbitmq.ssl.key-store-password=pass123 spring.rabbitmq.ssl.key-store-type=PKCS12 spring.rabbitmq.ssl.trust-store=C:\\SSL-certificates\\root-ca-certificate.p12 spring.rabbitmq.ssl.trust-store-password=pass123 spring.rabbitmq.ssl.trust-store-type=PKCS12
Error coming in rabbitmq logs :[info] <0.4453.1> TLS server: In state certify received CLIENT ALERT: Fatal - Certificate Unknown
Troubleshooting via openssl cmd prompt- client is giving this error
:erify 8
verify depth is 8
Loading 'screen' into random state - done
CONNECTED(00000244)
write:errno=10054
Can somebody let me know where it is going wrong ?
Thanks!
Ruchika
ruchika nema
Jun 24, 2019, 12:46:02 AM6/24/19
to rabbitmq-users
Any pointers............to resolve this issue??
Kind Regards,
Ruchika
Ruchika
Arnaud Cogoluègnes
Jun 24, 2019, 8:25:04 AM6/24/19
to rabbitm...@googlegroups.com
Can you please provide the server configuration and the client logs?
> --
> You received this message because you are subscribed to the Google Groups "rabbitmq-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to rabbitmq-user...@googlegroups.com.
> To post to this group, send email to rabbitm...@googlegroups.com.
> To view this discussion on the web, visit https://groups.google.com/d/msgid/rabbitmq-users/71fb8fdd-3677-4d26-8889-5482a45c8ab0%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
> You received this message because you are subscribed to the Google Groups "rabbitmq-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to rabbitmq-user...@googlegroups.com.
> To post to this group, send email to rabbitm...@googlegroups.com.
> To view this discussion on the web, visit https://groups.google.com/d/msgid/rabbitmq-users/71fb8fdd-3677-4d26-8889-5482a45c8ab0%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
Michael Klishin
Jun 30, 2019, 6:08:29 PM6/30/19
to rabbitmq-users
The message means that a certificate is not trusted (by the client/JVM, from the description of it).
Please start with [1].
--
You received this message because you are subscribed to the Google Groups "rabbitmq-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to rabbitmq-user...@googlegroups.com.
To post to this group, send email to rabbitm...@googlegroups.com.
To view this discussion on the web, visit https://groups.google.com/d/msgid/rabbitmq-users/87d6b0e0-a101-43e5-b2c4-0f6dd31b1aa8%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
MK
Staff Software Engineer, Pivotal/RabbitMQ
Reply all
Reply to author
Forward
0 new messages