On Mon, Dec 29, 2008 at 04:23:30PM -0500, Carol Walter wrote:
> "with openssl" when I initially configured the server. Are there other
> things that need to be done to get openssl started on the database server?
> How can I diagnose this problem?
The files server.key, server.crt, root.crt, and root.crl are only examined
during server start; so you must restart the server for changes in them
to take effect.
It's been awhile since I played with this, but there's something about an
environment var, PGSSLMODE.
You can use openssl to verify the server/root ca correctness like
openssl verify -CAfile ./root.crt testcert.pem
assuming openssl in the mix.
In response to
pgsql-admin by date
|Next:||From: Tom Lane||Date: 2008-12-30 03:13:12|
|Subject: Re: ssl database connection problems... |
|Previous:||From: Scott Marlowe||Date: 2008-12-29 21:50:38|
|Subject: Re: ssl database connection problems...|