On Wed, Dec 17, 2003 at 04:32:17PM +0000, Mark Watts wrote: > > I made a slight mistake before in step 3b -- the client config file > > expects the parameter trusted_ca rather than ca_file to point to the > > CA's certificate. If that doesn't fix the problem, give me some idea > > what those dialogues say. > > Heh - I deleted that thinking it wasn't needed :)
Deleted what?
> I've changed th ca_file back to trusted_ca and I've tried it set to both
> servercert.pem and cacert.pem (I assume its the latter?)
Yes, trusted_ca should point to cacert.pem; eg, "/etc/nessus/CA/cacert.pem".
> Regardless how I set these, when I start nessus (as my user) and give it the
> correct username in the login page; any non-null password gets me a simple
> dialog saying "Login Failed". I get no debugging info on the console.
What if anything appears in /var/log/nessus/nessusd.messages when you
try to login?
What is contained in /var/lib/nessus/users/${user}/auth/dname?
What output is generated from the following command?
openssl s_client -connect $hostname:1241 -tls1 \
-cert ~/nessus/cert_$user.pem \
-key ~/nessus/key_$user.pem \
-CAfile /etc/nessus/CA/cacert.pem
Substitute the nessus server hostname for $hostname and your username
for $user above. You may need to control-C out of it if the command
appears to hang.
Which version of Nessus do you have?
George
--
[EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
