Excellent, that's what I was looking for. I already tried going to http://<FQDN>/ca.crt, downloaded it, and installed it but still received the same error. I'm going to replace them for 3rd party ones. Thank you for the help! On 1/13/2014 12:54 PM, Thomas Suckow wrote:
On 01/13/2014 09:50 AM, Neil Schulz wrote:
So, this is the only way to stop having to accept the cert?
I'd have to tell all our clients to download and install that cert to their workstation?
No.
You can replace the Websocket Proxy certs referenced by /etc/ovirt-engine/ovirt-websocket-proxy.conf.d/10-setup.conf
The websocket proxy needs a combined certificate file with your cert and the entire chain for SSL_CERTIFICATE
SSL_KEY is just the unencrypted key, and it MUST be accessible by the ovirt user. _______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users