When I am connecting a web brower to http://webkdc.example.com/webkdc-service, I have a Bad Request error as you said.
2012/11/7 Russ Allbery <ea...@windlord.stanford.edu> > James James <jre...@gmail.com> writes: > > > Yes it contains > > > # If the WebKDC is localhost, disable LWP certificate verification. The > > # WebKDC will have a certificate matching its public name, which will > never > > # match localhost, and we should be able to trust the server when > connecting > > # directly to localhost. > > if ($WebKDC::Config::URL =~ m,^https://localhost/,) { > > $ENV{PERL_LWP_SSL_VERIFY_HOSTNAME} = 0; > > } > > Okay, well, I don't know. This works fine for me and for other folks, so > something is different on your system, but I don't know how to figure out > what that is. Something is wrong with the core Perl libraries on your > system, I think, but I don't know what; older versions of LWP don't do > certificate verification at all, and newer ones use that variable to > disable it. > > Can you connect to /webkdc-service/ on that host with a web browser using > SSL? You should get a Bad Request error, but not an SSL error. > > -- > Russ Allbery <ea...@windlord.stanford.edu> > Technical Lead, ITS Infrastructure Delivery Group, Stanford University >
