On Thu, Mar 08, 2012 at 12:04:45PM +0100, Saša Tomić wrote:
> On 03/08/2012 11:56 AM, Federico Simoncelli wrote:
> >----- Original Message -----
> >>We are getting closer now, it appears that some paths are broken...
> >>2012-03-07 15:42:58.134+0000: 1590: error :
> >>virNetTLSContextCheckCertBasicConstraints:166 : The certificate
> >>/etc/pki/vdsm/certs/vdsmcert.pem basic constraints show a CA, but we
> >>need one for a server
> >Could you check if you have this line in the libvirtd configuration:
> ># egrep ^ca_file /etc/libvirt/libvirtd.conf
> >ca_file="/etc/pki/vdsm/certs/cacert.pem" # by vdsm
> I was just checking that, and the line is there.
To have this removed, make sure /etc/vdsm/vdsm.conf has ssl=false,
Basically, I believe that you have found a bug with the default
certificate that Vdsm creates for itself when it is installed.
Let's see if you can work with ssl=false.
vdsm-devel mailing list