← Back to team overview

mosquitto-users team mailing list archive

  1. mosquitto-users team
  2. Mailing list archive
  3. Message #00080

Re: SSL connection from Java client to mosquitto broker: "no certificate returned"

  Thread PreviousDate PreviousThread Next 
Hi Sharon

As Roger said, from a Paho perspective it would be great to have an example
out there. You could post it on Stack Overflow, but another good
alternative would be either in a Github repository or as a Gist on Github.
I'll be sure to link that from the Paho wiki!

Thanks.

Andy

On Wed, Oct 24, 2012 at 6:27 PM, Sharon Ben-Asher
<Sharon.Ben-Asher@xxxxxxx>wrote:

> Hi Roger,
>
> At last, I can confirm that everything works!
> Thanks for all the help!
> I will post my sample code in stack overflow, so it will come up in google
> search...
>
> Sharon
>
> -----Original Message-----
> From: mosquitto-users-bounces+sharon.ben-asher=avg.com@xxxxxxxxxxxxxxxxxxx[mailto:
> mosquitto-users-bounces+sharon.ben-asher=avg.com@xxxxxxxxxxxxxxxxxxx] On
> Behalf Of Roger Light
> Sent: Wednesday, October 24, 2012 6:03 PM
> To: mosquitto-users@xxxxxxxxxxxxxxxxxxx
> Subject: Re: [Mosquitto-users] SSL connection from Java client to
> mosquitto broker: "no certificate returned"
>
> Hi Sharon,
>
> > Run my client Java program with the client certs from the test/ssl
> directory - successfully!
> > At last I know my code works correctly!
> > Would like me to post it somewhere for posterity?
>
> By all means - I'm sure the Paho guys would be pleased to have it as an
> example of how to use SSL. I'm not sure where the best place to put it
> would be though.
>
> > 2) generated a new set of certs without encryption.
> > mosquito_sub fails to connect with these certs.
> > I attach all the certs used.
>
> Great, after a bit of playing I see what's going on. The problem is that
> you've got the exact same details with your CA as with your server and
> client certificates. Try changing the Organisational Unit and/or the Common
> Name to ensure that the tools can distinguish between your server/client
> certificates and the CA that signed them. I should add that to the docs.
>
> Cheers,
>
> Roger
>
> --
> Mailing list: https://launchpad.net/~mosquitto-users
> Post to     : mosquitto-users@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~mosquitto-users
> More help   : https://help.launchpad.net/ListHelp
>
> --
> Mailing list: https://launchpad.net/~mosquitto-users
> Post to     : mosquitto-users@xxxxxxxxxxxxxxxxxxx
> Unsubscribe : https://launchpad.net/~mosquitto-users
> More help   : https://help.launchpad.net/ListHelp
>



-- 
Andy Piper | Farnborough, Hampshire (UK)
blog: http://andypiper.co.uk   |   skype: andypiperuk
twitter: @andypiper  |  images: http://www.flickr.com/photos/andypiper

Follow ups

References

  Thread PreviousDate PreviousThread Next