Re: Problems with SSL

You seem to be using self-signed SSL certificates. This error is due to
the fact that your remote systems can't validate with a known
certificate authority (CA), because your DB server is the CA and your
remote systems don't trust that as a CA. Note that, by default, a
system doesn't even trust itself AFAIR.

Save the SSL certificates into .crt or .cer files and then import them
into the remote computer's root authority. You can access installed
certificates in Windows 2000/XP/2003 in Control Panel --> Internet
Options --> Content tab --> Certificates button.

You can use group policy to publish certificates, or you can get a cert
from a known, trusted SSL authority like Verisign.

--
Brandon Aiken
CS/IT Systems Engineer
________________________________________
From: pgsql-novice-owner(at)postgresql(dot)org
[mailto:pgsql-novice-owner(at)postgresql(dot)org] On Behalf Of Hackenberg, Rick
Sent: Tuesday, January 16, 2007 4:07 PM
To: pgsql-novice(at)postgresql(dot)org
Subject: [NOVICE] Problems with SSL

Hello,
I have migrated one of our Posgres databases from Unix to an NT server.
I have set up the database, turned SSL on, created the reuired
certificates on the server but when I try to access the database I
receive the following error message: Error connecting to the server: SSL
Error: tlsv1 alert unknown ca
I have tried recreating the certficates mutiple times but I keep
receiving this error. Could anyone shed any light on this problem????
Thanks in advance.
Rick Hackenberg
Business Systems Analyst
PRIMEDIA
Enthusiast Media
6405 Flank Drive
Harrisburg, PA 17112
717-540-6643(Office)
717-657-9552 (FAX)
717-215-0450(Cell)