Migrated FOG, Clients Not Happy



  • Here is the output when using wget from the server console.

    
    root@fogserver:~/fogproject/bin# wget http://fogserver/fog/management/other/ssl/srvpublic.crt
    --2019-12-18 20:23:57--  http://fogserver/fog/management/other/ssl/srvpublic.crt
    Resolving fogserver (fogserver)... 127.0.1.1
    Connecting to fogserver (fogserver)|127.0.1.1|:80... connected.
    HTTP request sent, awaiting response... 200 OK
    Length: 1757 (1.7K) [application/x-x509-ca-cert]
    Saving to: ‘srvpublic.crt’
    
    srvpublic.crt                           100%[============================================================================>]   1.72K  --.-KB/s    in 0s
    
    2019-12-18 20:23:57 (189 MB/s) - ‘srvpublic.crt’ saved [1757/1757]
    

    I can try from a different computer if you need me to. Looking at the cert store on the windows device I have both the FOG Server CA which is valid as well as the FOG Project cert.


  • Senior Developer

    @Scott-B said in Migrated FOG, Clients Not Happy:

    I am able to download the file with wget as well.

    Sorry that I keep asking but does wget do a straight download or is it being redirected to another URL before it can download the cert?

    Please take a look at the certificate store on the client. Make sure the “FOG Server CA” does exist and is still valid. (You can ignore the “FOG Project” cert as it is only used by the client updater.) Here you want to take a look at the "FOG Server CA"s thumbprint. Compare that to what you get when running this command on your FOG server console: openssl x509 -in /opt/fog/snapins/ssl/CA/.fogCA.pem -fingerprint -noout

    alt text
    (see here on where to find the cert store)




  • Senior Developer

    @Scott-B said in Migrated FOG, Clients Not Happy:

    Visiting that URL I am prompted to download a crt file.

    Please try using wget as well just to make sure it’s not a redirect issue.



  • @Sebastian-Roth said in Migrated FOG, Clients Not Happy:

    Scott-B I pushed out a new fog-client release (0.11.17) a couple of days ago. This is the first time I have done this (took over the work from another person) and seems like something is wrong although we did some thorough testing before the release.

    Visiting that URL I am prompted to download a crt file. All the details inside the cert seem to be correct.


  • Senior Developer

    @Scott-B I pushed out a new fog-client release (0.11.17) a couple of days ago. This is the first time I have done this (took over the work from another person) and seems like something is wrong although we did some thorough testing before the release.

    Can you please open the URL http://fogserver/fog/management/other/ssl/srvpublic.crt and make sure it’s a certificate file you get as return? Best if you can use wget command on a Linux command shell so we see if it does some redirecting before the download!


Log in to reply
 

256
Online

7.2k
Users

14.4k
Topics

135.5k
Posts