Hello, On the server side, there is nothing. Only that:
1217 10:58:52 (0000032c) 141.96.41.202:1099 connected to 141.96.44.78:9021 1217 10:58:52 (0000032c) mordor D(0) 141.96.41.202 UNK AUTH SSL 1217 10:58:56 (0000032c) 141.96.41.202 connection aborted 1217 10:58:56 (0000032c) 141.96.41.202 connection closed Not so useful. For the certificate, the full error message is: =>START SSL/TLS connect on COMMAND SSL_handshake:UNKWN before/connect initialization SSL_connect:UNKWN before/connect initialization SSL_connect:3WCH_A SSLv3 write client hello A SSL_read_alert SSL_connect:failed in 3RSH_A SSLv3 read server hello A ftp: SSL/TLS connect COMMAND error: error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure =>DONE SSL/TLS connect on COMMAND SSL authentication failed If Kermit doesn't use client certificate, the issue is exactly the same. I am using our own certificate. There are one RootCA, one SubCA certified by the Root and the certificates used for the FTP/SSL issued by the SubCA. I have imported Root and Sub CA in the Truted Store of WS. The issuers are trusted. I also tested the following scenario: import of the client certificate used by kermit in the ws_ftp trusted authorities store. Any other idea? Kind regards, Pierre -----Original Message----- From: Peter 'Luna' Runestig [mailto:[EMAIL PROTECTED]] Sent: maandag 16 december 2002 23:08 To: [EMAIL PROTECTED] Subject: Re: [WS_FTP Forum] Connect Kermit to WS_FTP server Rousseau Pierre (DBB) wrote: > Hello, > > I am trying to connect Kermit ftp/ssl client with WS_FTP server. In > the config of WS_FTP server, SSL is forced on control & data > channels. As expected by WS_FTP server, Kermit is configured to > enable SSL. I put the following options: > - autologin > off > - authtype > ssl or tls > - autoencryption > on or off > - command-protection > private or safe or confidential > - data-protection > private or safe or confidential > > I receive the error "ftp: SSL/TLS connect COMMAND error: > error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake > failure" on the Kermit side. Connection is marked as closed on WS > side. Are there any useful error messages on the server side? > I have already tried a lot of mix for the parameters but I > don't succeed. > > I enable the SSL debug mode. It seems that the server desn't return a > certificate... Why do you say that (I can't see any such message in your post)? But you seem to use a client certificate, right? Does the server approve that certificate, or does it reject it? Have you tried without using a client certificate? Cheers, - Peter -- Visit our websites http://www.dexia.be - http://www.axionweb.be "The information contained in this message is intended for the addressee only and may contain confidential and/or privileged information and/or information protected by intellectual property rights. If you are not the addressee, please delete this message and notify the sender; you should not use, alter, copy or distribute this message or disclose its contents to anyone. Email transmission cannot be guaranteed to be secure or error free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. No responsibility is accepted by Dexia Bank for any loss or damage arising in any way from its use. Any views or opinions expressed in this message are those of the author and do not necessarily represent those of Dexia Bank or any of its affiliates. Therefore this email does not constitute a commitment by Dexia bank unless it contains an express statement to the contrary from an authorised representative." Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list.
