<html> <head> <style></style></head> <body class='hmmessage'><div dir='ltr'>I have installed a wildcard cert into Apache on my spacewalk server. I am getting an error trying to start osad dispatcher:<div><br></div><div><div>Starting osa-dispatcher: RHN 5813 2013/07/10 01:35:21 -04:00: ('Traceback caught:',)</div><div>RHN 5813 2013/07/10 01:35:21 -04:00: ('Traceback (most recent call last):\n File "/usr/share/rhn/osad/jabber_lib.py", line 616, in connect\n ssl.do_handshake()\nError: [(\'SSL routines\', \'SSL3_GET_SERVER_CERTIFICATE\', \'certificate verify failed\')]\n',)</div><div><br></div><div>I know that jabber uses a server.pem file so I copied over a server.pem file that has my private key and wildcard cert in it. I was also wondering what certs these should be:</div><div><br></div><div><pre class="code" style="padding: 0.5em; margin-top: 0px; font-family: monospace, serif; font-size: 13px; border: 1px dashed rgb(204, 204, 204); color: rgb(51, 51, 51); overflow: auto; background-color: rgb(247, 249, 250); line-height: 19px; text-align: justify; width: auto !important;">RHN-ORG-TRUSTED-SSL-CERT - would this be the server certificate itself?</pre></div><div>RHNS-CA-CERT - would this be the CA cert/certs from my 3rd party vendor?</div><div><br></div><div>I am wondering if the wildcard cert is the issue as I have been reading that jabber is picky about host names being same. Of course wildcard cert would be *.name.com and not spacewalk.name.com. Should I avoid a wildcard cert for Spacewalk? Any assistance would be great. This whole cert thing is a major pain to configure when you cannot use self signed due to internal policies.</div><div><br></div></div> </div></body> </html>