Home > mailing lists

Is Client connections via ca.crt only possible? - Mailing list pgsql-general

From	Rejo Oommen
Subject	Is Client connections via ca.crt only possible?
Date	August 1, 2022 11:12:33
Msg-id	CAFiZ60hyT7wJ+jtSiJ3UjE92jCK43cqOF0cxmmkwq8Q+EnkSqw@mail.gmail.com Whole thread Raw
Responses	Re: Is Client connections via ca.crt only possible?
List	pgsql-general

Tree view

Requirement is to use only ca.crt and connect to postgres

Server.crt, Server.key and ca.crt are configured at the postgres server for tls connection.

Connection successful while using

psql ‘host=172.29.21.222 dbname=test user=postgres sslmode=verify-ca sslcert=/tmp/server.crt sslkey=/tmp/server.key sslrootcert=/tmp/ca.crt port=5432’

For clients to connect, can they use only ca.crt and connect to the DB. Tried and got the below error

psql ‘host=172.29.21.222 dbname=test user=postgres sslmode=verify-ca sslrootcert=/tmp/ca.crt port=5432’

psql: error: connection to server at “172.29.21.222”, port 50001 failed: FATAL: connection requires a valid client certificate

pgsql-general by date:

From: Adrian Klaver
Date: 01 August 2022, 06:06:27
Subject: Re: Connecting to postgres on OSX from Swift using PostgresClientKit

From: Matthias Apitz
Date: 01 August 2022, 12:22:33
Subject: a database can be created but not droped

Is Client connections via ca.crt only possible? - Mailing list pgsql-general

Previous

Next