我试图让Ejabberd与上centos7 letsencrypt证书工作。 我不断收到有关的错误不是由已知的CA签名证书Ejabbed与letsencrypt证书
我已经创建了由certbot证书,我加入了的privKey和fullchain文件,单个文件。
所有C2S连接正常工作,但S2S连接不。
当开始Ejabberd我看到下面的相关日志条目:
[warning] <0.606.0>@ejabberd_pkix:check_ca_dir:386 CA directory /etc/ssl/certs doesn't contain hashed certificate files; configuring 'ca_path' option might help
[warning] <0.606.0>@ejabberd_pkix:mk_cert_state:240 certificate from /opt/ejabberd/conf/xxxx.pem is invalid: certificate is signed by unknown CA
连接到例如draugr.de生成以下条目:
[info] <0.793.0>@ejabberd_s2s_in:handle_auth_failure:206 (tls|<0.792.0>) Failed inbound s2s EXTERNAL authentication draugr.de -> XXXXX.net (::FFFF:89.163.212.45): unable to get local issuer certificate
我希望有人能帮助我,谢谢!