Hi welter, Thank you for the help.
Actually I'm trying to do POC to implement openxpki. So I'm trying to setup it in my system. I have tried giving the permissions on the folder. Still same issue exists for me. When I tried to check into /var/log/openxpki I can't able to see est.log file in it. Is any configuration I'm missing here. Please suggest root@pki:/var/log/openxpki# ls -lrt total 2004 -rwxr-xr-x 1 root root 0 Aug 24 10:22 deprecated.log -rwxr-xr-x 1 root root 70174 Aug 28 06:42 workflows.log -rwxr-xr-x 1 root root 5585 Aug 28 08:51 audit.log -rwxr-xr-x 1 root root 16462 Aug 28 08:51 stderr.log -rwxr-xr-x 1 root root 114799 Aug 28 08:51 openxpki.log -rwxr-xr-x 1 root root 1430262 Aug 28 08:51 webui.log -rwxr-xr-x 1 root root 412242 Aug 28 08:51 catchall.log Thanks Ravi L -----Original Message----- From: Oliver Welter <[email protected]> Sent: 28 August 2020 13:20 To: [email protected] Subject: Re: [OpenXPKI-users] EXT: Re: Reg:Help Ravi, is there any reason why you dont try the online demo as suggested? The docker image seems to have a permission problem on the EST Log file: https://sourceforge.net/p/openxpki/mailman/message/37089193/ This is very likely hitting you - go into the container and try "chmod 4777 /var/log/openxpki", this should hopefully fix the issue. Oliver Am 28.08.20 um 09:26 schrieb Lingala, Ravi Shankar (GE Digital): > Hi, > > Thanks for the reply. > I have tried with " curl -v > http://localhost:8080/.well-known/est/simpleenroll --anyauth -u > estuser:estpwd -s -o cert.p7 --cacert ./dstcax3.pem --data-binary @req.p10 -H > "Content-Type: application/pkcs10" --dump-header resp.hdr" > Still getting same error. Will you please suggest > > Error > osm_linux@G49NCZY2E:~$ curl -v > http://localhost:8080/.well-known/est/simpleenroll --anyauth -u > estuser:estpwd -s -o cert.p7 --cacert ./dstcax3.pem --data-binary @req.p10 -H > "Content-Type: application /pkcs10" --dump-header resp.hdr > * Trying 127.0.0.1... > * TCP_NODELAY set > * Connected to localhost (127.0.0.1) port 8080 (#0) >> POST /.well-known/est/simpleenroll HTTP/1.1 >> Host: localhost:8080 >> User-Agent: curl/7.58.0 >> Accept: */* >> Content-Type: application/pkcs10 >> Content-Length: 493 >> > } [493 bytes data] > * upload completely sent off: 493 out of 493 bytes < HTTP/1.1 500 > Internal Server Error < Date: Fri, 28 Aug 2020 07:24:14 GMT < Server: > Apache/2.4.10 (Debian) < Content-Length: 609 < Connection: close < > Content-Type: text/html; charset=iso-8859-1 < { [609 bytes data] > * Closing connection 0 > > Thanks > Ravi L > > > -----Original Message----- > From: Oliver Welter <[email protected]> > Sent: 28 August 2020 11:51 > To: [email protected] > Subject: EXT: Re: [OpenXPKI-users] Reg:Help > > Ravi, > > we prepared the autoenroll endpoint on the demo server for you, it does not > exist in the default docker images so you can not run this locally. > > Documentation on the Enrollment Backend can be found here > https://openxpki.readthedocs.io/en/latest/reference/configuration/work > flows/enroll.html > > Oliver > > Am 28.08.20 um 07:53 schrieb Lingala, Ravi Shankar (GE Digital): >> Hi, >> >> >> >> I tried to request a certificate from './simpleenroll' endpoint, the >> EST server throws 500-Internal server Exception. Will you please help >> me with that >> >> >> >> *curl -v >> http://localhost:8080/.well-known/est/autoenroll/simpleenroll* >> >> * Trying 127.0.0.1... >> >> * TCP_NODELAY set >> >> * Connected to localhost (127.0.0.1) port 8080 (#0) >> >>> GET /.well-known/est/autoenroll/simpleenroll HTTP/1.1 >> >>> Host: localhost:8080 >> >>> User-Agent: curl/7.58.0 >> >>> Accept: */* >> >>> >> >> < HTTP/1.1 500 Internal Server Error >> >> < Date: Thu, 27 Aug 2020 14:21:38 GMT >> >> < Server: Apache/2.4.10 (Debian) >> >> < Content-Length: 609 >> >> < Connection: close >> >> < Content-Type: text/html; charset=iso-8859-1 >> >> < >> >> <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> >> >> <html><head> >> >> <title>500 Internal Server Error</title> >> >> </head><body> >> >> <h1>Internal Server Error</h1> >> >> <p>The server encountered an internal error or >> >> misconfiguration and was unable to complete >> >> your request.</p> >> >> <p>Please contact the server administrator at >> >> webmaster@localhost to inform them of the time this error occurred, >> >> and the actions you performed just before this error.</p> >> >> <p>More information about this error may be available >> >> in the server error log.</p> >> >> <hr> >> >> <address>Apache/2.4.10 (Debian) Server at localhost Port >> 8080</address> >> >> </body></html> >> >> * Closing connection 0 >> >> >> >> Server Error log shows >> >> [Thu Aug 27 17:03:48.887420 2020] [fcgid:warn] [pid 33:tid >> 140531699005184] (104)Connection reset by peer: [client >> 172.17.0.1:36698] mod_fcgid: error reading data from FastCGI server >> >> [Thu Aug 27 17:03:48.888293 2020] [core:error] [pid 33:tid >> 140531699005184] [client 172.17.0.1:36698] End of script output >> before >> headers: est.fcgi >> >> >> >> Thanks >> >> Ravi L >> >> >> >> >> >> _______________________________________________ >> OpenXPKI-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/openxpki-users >> > > > -- > Protect your environment - close windows and adopt a penguin! > > > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openxpki-users > > > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openxpki-users > -- Protect your environment - close windows and adopt a penguin! _______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users _______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
