XCP-ng
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    "Error: self-signed certificate" OIDC

    Scheduled Pinned Locked Moved Xen Orchestra
    2 Posts 2 Posters 542 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J Offline
      jay-msls
      last edited by

      I am trying to setup my OIDC (thank you Vates and team) however I am getting the error below:

      plugin.load
{
  "id": "auth-oidc"
}
{
  "code": "DEPTH_ZERO_SELF_SIGNED_CERT",
  "originalUrl": "https://idp.com/.well-known/openid-configuration",
  "url": "https://idp.com/.well-known/openid-configuration",
  "message": "self-signed certificate",
  "name": "Error",
  "stack": "Error: self-signed certificate
    at TLSSocket.onConnectSecure (node:_tls_wrap:1540:34)
    at TLSSocket.emit (node:events:513:28)
    at TLSSocket.patchedEmit [as emit] (/opt/xen-orchestra/@xen-orchestra/log/configure.js:52:17)
    at TLSSocket._finishInit (node:_tls_wrap:959:8)
    at TLSWrap.ssl.onhandshakedone (node:_tls_wrap:743:12)
    at TLSWrap.callbackTrampoline (node:internal/async_hooks:130:17)"
}

      can anyone point me in the right direction? both servers for IDP and Xen-Orchestra are on the same network/subnet. I already dragged the IDP cert into the certificate folder. If anyone can help that would be great!

      Debian 11
      XOA CE 5.110.0

      1 Reply Last reply Reply Quote 0
      • olivierlambertO Offline
        olivierlambert Vates 🪐 Co-Founder CEO
        last edited by

        Hi,

        This is an error regarding your certificates, which are self-signed. I'm afraid it's not related to XO itself.

        I suppose you can only use self signed certs in your context?

        1 Reply Last reply Reply Quote 0

        Hello! It looks like you're interested in this conversation, but you don't have an account yet.

        Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.

        With your input, this post could be even better 💗

        Register Login
        • First post
          Last post