← Back to team overview

mosquitto-users team mailing list archive

Re: SSL connection from Java client to mosquitto broker: "no certificate returned"

 

Hi Roger,

At last, I can confirm that everything works!
Thanks for all the help!
I will post my sample code in stack overflow, so it will come up in google search... 

Sharon 

-----Original Message-----
From: mosquitto-users-bounces+sharon.ben-asher=avg.com@xxxxxxxxxxxxxxxxxxx [mailto:mosquitto-users-bounces+sharon.ben-asher=avg.com@xxxxxxxxxxxxxxxxxxx] On Behalf Of Roger Light
Sent: Wednesday, October 24, 2012 6:03 PM
To: mosquitto-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Mosquitto-users] SSL connection from Java client to mosquitto broker: "no certificate returned"

Hi Sharon,

> Run my client Java program with the client certs from the test/ssl directory - successfully!
> At last I know my code works correctly!
> Would like me to post it somewhere for posterity?

By all means - I'm sure the Paho guys would be pleased to have it as an example of how to use SSL. I'm not sure where the best place to put it would be though.

> 2) generated a new set of certs without encryption.
> mosquito_sub fails to connect with these certs.
> I attach all the certs used.

Great, after a bit of playing I see what's going on. The problem is that you've got the exact same details with your CA as with your server and client certificates. Try changing the Organisational Unit and/or the Common Name to ensure that the tools can distinguish between your server/client certificates and the CA that signed them. I should add that to the docs.

Cheers,

Roger

--
Mailing list: https://launchpad.net/~mosquitto-users
Post to     : mosquitto-users@xxxxxxxxxxxxxxxxxxx
Unsubscribe : https://launchpad.net/~mosquitto-users
More help   : https://help.launchpad.net/ListHelp


Follow ups

References