Hallo an Alle,
wir nutzen an unserem Institut TrueNas 12.0-U8 und wollen ein ACME-Zertifikat erstellen, was aber immer zu einem Fehler führt.
Vorher wurde ein CSR erstellt, mit den Optionen:
Authority Key Identifier: Authority Cert Issuer
Key Usage: Digital Signature, Key Encipherment
Was allerdings auch merkwürdig ist, ist dass der Status des CSR weiterhin auf external - signature pending steht.
Versucht man dann damit ein ACME Zertifikat zu erstellen sieht der Fehler wie folgt aus:
Fehler: Traceback (most recent call last):
File "/usr/local/lib/python3.9/site-packages/middlewared/job.py", line 367, in run
await self.future
File "/usr/local/lib/python3.9/site-packages/middlewared/job.py", line 403, in __run_body
rv = await self.method(*([self] + args))
File "/usr/local/lib/python3.9/site-packages/middlewared/schema.py", line 973, in nf
return await f(*args, **kwargs)
File "/usr/local/lib/python3.9/site-packages/middlewared/plugins/crypto.py", line 1709, in do_create
data = await self.middleware.run_in_thread(
File "/usr/local/lib/python3.9/site-packages/middlewared/utils/run_in_thread.py", line 10, in run_in_thread
return await self.loop.run_in_executor(self.run_in_thread_executor, functools.partial(method, *args, **kwargs))
File "/usr/local/lib/python3.9/site-packages/middlewared/utils/io_thread_pool_executor.py", line 25, in run
result = self.fn(*self.args, **self.kwargs)
File "/usr/local/lib/python3.9/site-packages/middlewared/schema.py", line 977, in nf
return f(*args, **kwargs)
File "/usr/local/lib/python3.9/site-packages/middlewared/plugins/crypto.py", line 1757, in __create_acme_certificate
final_order = self.acme_issue_certificate(job, 25, data, csr_data)
File "/usr/local/lib/python3.9/site-packages/middlewared/plugins/crypto.py", line 1403, in acme_issue_certificate
return acme_client.poll_and_finalize(order, datetime.datetime.now() + datetime.timedelta(minutes=10))
File "/usr/local/lib/python3.9/site-packages/acme/client.py", line 708, in poll_and_finalize
orderr = self.poll_authorizations(orderr, deadline)
File "/usr/local/lib/python3.9/site-packages/acme/client.py", line 732, in poll_authorizations
raise errors.ValidationError(failed)
acme.errors.ValidationError
Hat jemand vllt. schon Erfahrungen mit TrueNas und ACME gemacht und kann evtl. helfen?
mit freundlichen Grüßen
Stefan
wir nutzen an unserem Institut TrueNas 12.0-U8 und wollen ein ACME-Zertifikat erstellen, was aber immer zu einem Fehler führt.
Vorher wurde ein CSR erstellt, mit den Optionen:
Authority Key Identifier: Authority Cert Issuer
Key Usage: Digital Signature, Key Encipherment
Was allerdings auch merkwürdig ist, ist dass der Status des CSR weiterhin auf external - signature pending steht.
Versucht man dann damit ein ACME Zertifikat zu erstellen sieht der Fehler wie folgt aus:
Fehler: Traceback (most recent call last):
File "/usr/local/lib/python3.9/site-packages/middlewared/job.py", line 367, in run
await self.future
File "/usr/local/lib/python3.9/site-packages/middlewared/job.py", line 403, in __run_body
rv = await self.method(*([self] + args))
File "/usr/local/lib/python3.9/site-packages/middlewared/schema.py", line 973, in nf
return await f(*args, **kwargs)
File "/usr/local/lib/python3.9/site-packages/middlewared/plugins/crypto.py", line 1709, in do_create
data = await self.middleware.run_in_thread(
File "/usr/local/lib/python3.9/site-packages/middlewared/utils/run_in_thread.py", line 10, in run_in_thread
return await self.loop.run_in_executor(self.run_in_thread_executor, functools.partial(method, *args, **kwargs))
File "/usr/local/lib/python3.9/site-packages/middlewared/utils/io_thread_pool_executor.py", line 25, in run
result = self.fn(*self.args, **self.kwargs)
File "/usr/local/lib/python3.9/site-packages/middlewared/schema.py", line 977, in nf
return f(*args, **kwargs)
File "/usr/local/lib/python3.9/site-packages/middlewared/plugins/crypto.py", line 1757, in __create_acme_certificate
final_order = self.acme_issue_certificate(job, 25, data, csr_data)
File "/usr/local/lib/python3.9/site-packages/middlewared/plugins/crypto.py", line 1403, in acme_issue_certificate
return acme_client.poll_and_finalize(order, datetime.datetime.now() + datetime.timedelta(minutes=10))
File "/usr/local/lib/python3.9/site-packages/acme/client.py", line 708, in poll_and_finalize
orderr = self.poll_authorizations(orderr, deadline)
File "/usr/local/lib/python3.9/site-packages/acme/client.py", line 732, in poll_authorizations
raise errors.ValidationError(failed)
acme.errors.ValidationError
Hat jemand vllt. schon Erfahrungen mit TrueNas und ACME gemacht und kann evtl. helfen?
mit freundlichen Grüßen
Stefan
