Hi, You mean the cacert.pem or the servercert.pem ? and vice versa ? Kind regards Ivan On 01/12/2016 12:31 PM, PÁSZTOR György wrote:
Hi,
"Ivan Adji - Krstev" <akivanradix@gmail.com> írta 2016-01-12 12:08-kor:
Can someone help me with this and tell me what im doing wrong ? At a first glance, it seems, that you put the server's own CA to the server's ca dir, and the client's ca into the client's ca dir.
The CA what you have created to sign the server's cert, should be on the client's side, so the client should have the chance to validate the server's cert, that it is signed with that. And vica versa: the server should have that ca, which were used to sign the client's cert, to valideate that signature.
Kind regards, Gyu ______________________________________________________________________________ Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng FAQ: http://www.balabit.com/wiki/syslog-ng-faq