[Openstack] Resolved: Grizzly-3 Keystone SSL Connection Refused
Miller, Mark M (EB SW Cloud - R&D - Corvallis)
mark.m.miller at hp.com
Thu Mar 14 21:58:06 UTC 2013
Looks like there's a bug in pki_setup. It didn't generate the SSL certs, only the signing certs. Workaround is to make ssl using the signing certs for now.
[ssl]
enable = True
certfile = /etc/keystone/ssl/certs/signing_cert.pem
keyfile = /etc/keystone/ssl/private/signing_key.pem
ca_certs = /etc/keystone/ssl/certs/ca.pem
cert_required = False
Also, if your keystone process is not running as root, make sure the file permissions for the pem files are set properly.
Guang
From: openstack-bounces+mark.m.miller=hp.com at lists.launchpad.net [mailto:openstack-bounces+mark.m.miller=hp.com at lists.launchpad.net] On Behalf Of Miller, Mark M (EB SW Cloud - R&D - Corvallis)
Sent: Thursday, March 14, 2013 2:31 PM
To: openstack at lists.launchpad.net (openstack at lists.launchpad.net)
Subject: [Openstack] Grizzly-3 Keystone SSL Connection Refused
Hello,
I was able to setup a Grizzly-2 Keystone server with PKI and SSL enabled on an Ubuntu 12.04 server. I updated to Grizzly-3 and am able to enable PKI but not SSL. I get "Connection refused". Has anyone else run into this problem? Does anyone else have SSL working with Grizzly-3 Keystone?
Regards,
Mark
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20130314/7cfe2d76/attachment.html>
More information about the Openstack
mailing list