On 02/07/2024 22:37, Wolfgang via Exim-users wrote:
I have already used openssl s_client to extract the whole certification chain, and I can confirm, that the DANE RR is valid.
That's not your problem. "TLS session: (gnutls_handshake): Key usage violation in certificate has been detected." ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ A certificate has a set of usages that it permits. At least one of the certs involved does not carry sufficient usage permissions. -- Cheers, Jeremy -- ## subscription configuration (requires account): ## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/ ## unsubscribe (doesn't require an account): ## exim-users-unsubscr...@lists.exim.org ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/