gy09535 opened a new issue #2794: URL: https://github.com/apache/apisix/issues/2794
### Issue description I use cfssl to generated the etcd ca, I can connect it with etcdctl with flowing command ``` etcdctl --endpoints=https://127.0.0.1:2379 --key-file=/etc/etcd/etcd-ca/client-key.pem --cert-file=/etc/etcd/etcd-ca/client.pem cluster-health ``` And I can use the curl command to connect it ``` curl -k --cert /usr/local/certs/client.pem --key /usr/local/certs/client-key.pem -s -m 60 https://192.168.100.96:12379/version ``` But how can I do in apisix, I config etcd with https and with no verify, after that I got this error ``` [error] 4533#0: *91 SSL_do_handshake() failed (SSL: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate:SSL alert number 42), context: ngx.timer ``` I try to set this config "lua_ssl_trusted_certificate" (https://github.com/openresty/lua-nginx-module#lua_ssl_trusted_certificate) with root ca "ca.pem", but I also can not work. Is their some config for "client-key" and "client.pem" I can set? ### Environment * apisix version (cmd: `apisix version`): * OS: ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
