Closed damsolo closed 2 years ago
The only protocol using certificates from the yangsuite server as of now is yangsuite-gnmi. I see that you do not have the yangsuite-gnmi plugin installed, so, the certificates uploaded are not used.
The certificate device-profile upload location is in the "General" section because the thought was that other protocols may eventually be using the same certificate (probably should have put that in the gnmi section until other protocols use them). I also noticed that there is a "Use SSL Certificate" checkbox in the SSH section and I know for a fact that SSH is not yet setup to use those uploaded certificates.
Are you having difficulty connecting NETCONF or SSH? Let's talk about that.
Please reply and re-open if you are still needing support - JC
Problem: While creating new device each addition of a certificate/key generates the following error (let's say we create
ech
device):So when I'm adding two certs and one key I see above error 3 times in logs. When I try to do some test with
ech
device and a restconf server i get the following response from the server:Provided certs and key are valid -
curl --cacert data_ca_crt.crt --key data_tls_key.key --cert data_tls_crt.crt "some_restconf_server_endpoint"
works fine even from thedocker_yangsuite_1
container.Devprofile exists in
docker_yangsuite_1
container: root@9a2f58c815f7:/ys-data/devices# cat ech.devprofileand certs were copied:
Installed versions: yangsuite==2.8.2 yangsuite_netconf==1.15.3 yangsuite_filemanager==1.8.1 yangsuite_yangtree==1.19.1 yangsuite_devices==2.8.7
OS: Ubuntu 21.04