[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Help with error: Server certificate verification failed

From: Laszlo Nagy <gandalf_at_shopzeus.com>
Date: Thu, 04 Dec 2008 10:29:30 +0100

Lars Zeb wrote:
>
> I am trying to get CruiseControl.Net setup and it is getting an error
> accessing a VisualSVN server using SSL (https protocol). In contacting
> the svn server, the command below fails. The command is issued via a
> DOS command; it is not run via a service.
>
> I am sorry if I’ve submitted this to the wrong group. I’d appreciate
> any help I get, even if I’m directed to another group.
>
> Thanks, Lars
>
> 2008-12-03 16:09:28,078 [MailHouseMVC:ERROR] Exception: Source control
> operation failed: svn: PROPFIND request failed on '/svn/Project'
>
> svn: PROPFIND of '/svn/Project': Server certificate verification
> failed: issuer is not trusted (https://server:8443)
>
> . Process command: svn.exe log https://server:8443/svn/Project/ -r
> "{2008-12-03T19:17:11Z}:{2008-12-04T00:09:27Z}" --verbose --xml
> --username user --password password --non-interactive --no-auth-cache
>
Most probably your subversion server is accessed through apache. When
you use https, your web server must be configured correctly. Read your
web server documentation about how to setup and install a certificate.
Basically, there are two choices for you:

   1. Create a server key, then create a certificate request, send this
      request to a certificate authority, who will sign it for you and
      return a "certificate". The server key and the certificate must be
      installed on your web server. Of course, you need to pay money for
      the CA.
   2. Create a server key, then sign it for yourself. This is called a
      "self signed certificate". This MUST be installed on your client
      side. On Windows, start mmc (Microsoft Management Console), add
      the appropiate snap-in, and install your certificate as a top
      level trusted issuer.

Certificates of top level CAs are pre-installed into Windows (and other
operating systems as well), so option #1 will make it possible for other
users to identify your website and trust it. Option #2 will only
suppress this error message on the machine where you installed your
certificate.

Best,

Laszlo

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=979426

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2008-12-04 10:34:10 CET

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.