Dear Philipp
> CNs that are configured in "TLS allowed CN" will be accepted even if the
> certificate does not
> exactly match the name.
It only worked after I set "TLS verify Peer = no" in the Storage Section of
bareos-sd.conf. Not sure what TLS verify Peer does -- also reference manual
does
Hello Tilman,
CNs that are configured in "TLS allowed CN" will be accepted even if the
certificate does not
exactly match the name.
On 01.02.2016 01:19, Tilman Glotzner wrote:
> Dear all
>
> 1) I did some more research. The following sections and with it, the
> certificates in the
Dear all
1) I did some more research. The following sections and with it, the
certificates in the configuration files need to match- Please correct me, if I
am wrong
a) The certificates of file daemon's [director] section need to match that of
the corresponding [client] section of the director
Dear all
(ad a) Now, it seems to work -- even though I am not sure that the
communication is now indeed protected by TLS.
in bareos-dir.conf, I changed the storage section to
Storage {
Name = FileStorage1
Address = backup.fritz.box # N.B. Use a fully qualified name here
SDPort = 9103