Hide Forgot
Title: Export an SSL Certificate for Clients there is an easier way for clients to collect the ssl cert directly from the server: openssl s_client -connect $QPID_SERVER:5671 | sed -n '/-----BEGIN CERTIFICATE-----/,/-----END CERTIFICATE-----/p' > myservercert.pem e.g. openssl s_client -connect qpid.test.engineering.redhat.com:5671 | sed -n '/-----BEGIN CERTIFICATE-----/,/-----END CERTIFICATE-----/p' > qpid.test.engineering.redhat.com.crt
Thanks for the suggestion! Incorporated: http://deathstar1.usersys.redhat.com:3000/builds/18173-Messaging_Installation_and_Configuration_Guide/index.html#Export_an_SSL_Certificate_for_Clients
Joshua, I don't understand the purpose of this bugzilla. The command mentioned in Comment 0 will acquire the server's certificate _NOT_ the client's certificate (but obtaining the server's certificate is done automatically when establishing the SSL connection with the server). What the command above do is: The openssl client tries to establish a SSL connection with the server, The server certificate is sent to the client and saved to a file regardless whether the connection was successful or not. What is the purpose of obtaining the server's certificate? I believe that there is no reason to manually obtain the server's certificate. As mentioned above, this is done automatically on establishing the SSL connection. Anyway, this content is definitely not related to the chapter where it is listed (Export an SSL Certificate for Clients).
That makes sense to me. I've removed this content. http://deathstar1.usersys.redhat.com:3000/builds/18173-Messaging_Installation_and_Configuration_Guide/#Export_an_SSL_Certificate_for_Clients
Content removal verified. The result is that no content was added, thus I'n suggesting to CLOSE NOTABUG. Joshua do you agree?
I agree.