So I've set up OCSInventory (OCS) on FreeBSD 10.3 and I'm having problems trying to get the OCSInventory agent to communicate properly with the server. I'm running the latest version of OCS which requires SSL to function. I've generated a self-signed cert but the handshake is failing. The server is running OpenSSL v1.0.1s and on the Mac OS X client OpenSSL v1.0.2g. The error code that is being returned by the OCS agent on the client is:
Connecting with the openssl s_client results in the following error (relevant parts):
I don't know if the conflict is due to the cert being generated with the older version of OpenSSL on the server and the client running a newer version.
I'm thinking that I'll have to update OpenSSL on the server side and regenerate the certs, but if anyone has gone through this I'd appreciate any help!
Thanks!
Code:
Cannot establish communication : 500 SSL negotiation failed: error:14094410:SSL
routines:SSL3_READ_BYTES:sslv3 alert handshake failure
Connecting with the openssl s_client results in the following error (relevant parts):
Code:
No client certificate CA names sent
...
Verify return code: 18 (self signed certificate)
I don't know if the conflict is due to the cert being generated with the older version of OpenSSL on the server and the client running a newer version.
I'm thinking that I'll have to update OpenSSL on the server side and regenerate the certs, but if anyone has gone through this I'd appreciate any help!
Thanks!