Zenoss 4.2.5 - rabbitmq disable cleartext authentication
48 views
Skip to first unread message
Satay Epic
Jul 31, 2024, 9:06:05 PM7/31/24
to Zenoss Core
Hello,
Has anyone ever setup SSL/TLS authentication for rabbitmq? Although I see "amqpusessl" in "global.conf" but I'm not sure if it is supported or not. I couldn't find any relevant Information in the regard to this in the Zenoss documentation.
Please advise,
Thanks
Jane Curry
Aug 1, 2024, 4:19:16 AM8/1/24
to Zenoss Core
Sorry - never tried that - or heard of anyone doing so. Doesn't mean to say it is impossible though. Please report back here if you make it work.
Cheers,
Jane
Satay Epic
Aug 29, 2024, 11:18:55 PM8/29/24
to Zenoss Core
I enabled SSL in rabbitmq on a test Zenoss instance and all but "zenactiond" will not connect to it. I see these errors.
2024-08-28 17:46:46,828 WARNING zen.protocols.twisted: Error authenticating to localhost as zenoss
=ERROR REPORT==== 28-Aug-2024::17:46:46 ===
SSL: hello: ./ssl_record.erl:366:Fatal error: record overflow
SSL: hello: ./ssl_record.erl:366:Fatal error: record overflow
=ERROR REPORT==== 28-Aug-2024::17:46:49 ===
error on AMQP connection <0.13434.0>: {ssl_upgrade_error, "record overflow"}
error on AMQP connection <0.13434.0>: {ssl_upgrade_error, "record overflow"}
Looking for Erlang R14B04 code, it seems related to Cipher length causing the "record overflow" issue.
The Certificate Cipher is DHE-RSA-AES256-SHA and Openssl version is 1.0.1e
Trying to figure out a way to debug this and find the cause of this trouble.
Does anyone have any ideas?
Thanks
Reply all
Reply to author
Forward
0 new messages