I have unreal running with SSL support, using the pem files generated via openssl from Config. I need to use a java chat client that is signed using a key/cert generated by Sun's "keytool".
Can the client and server parts of this equation indeed be independent like this or does one component need to use the credentials of the other? As it stands, the client says it can't find a trusted cert, even though I've imported both the client cert and the unreal cert into java's security/cacerts file.
Client-Server credential mismatch
Quoting directly from teh manual:ronrudman wrote:In the other direction, if I wanted unreal to validate the client's cert, is that where the set paramater "trusted-ca-file" is used?
Unfortunately I can't answer the rest of your question.set::ssl::options::fail-if-no-clientcert;
Forces clients that do not have a certificate to be denied.
set::ssl::options::no-self-signed;
Disallows connections from people with self-signed certificates.
set::ssl::options::verify-certificate;
Makes Unreal determine if the SSL certificate is valid before allowing connection.