"missing field `keyChange` at line 1 column 390"

M

mousseman

Member
Dec 1, 2022
2
0
6
Hi everybody,

I tried to request a certificate from the Dogtag PKI that I have set up internally, and with the command line

proxmox-backup-manager acme account register backy_local xxxxx@xxxxx.yyyyy.zz --directory https://ipa-ca.lab.local/acme/directory

I'm getting the error

Attempting to fetch Terms of Service from "https://ipa-ca.lab.local/acme/directory"
Error: missing field `keyChange` at line 1 column 390

Funnily enough, the exactly same procedure worked with Proxmox PVE 7.4.17 (apart from having to use pvenode, of course), which I have and works nicely.

Also, localhost-access.log from the dogtag PKI (as part of posts nothing strange:


127.0.0.1 - - [02/Jan/2025:23:41:03 +0100] "-" 400 -
10.10.1.20 - - [02/Jan/2025:23:41:20 +0100] "GET /acme/rest/directory HTTP/1.1" 200 390
10.10.1.20 - - [02/Jan/2025:23:42:50 +0100] "GET /acme/rest/directory HTTP/1.1" 200 390
10.10.1.20 - - [02/Jan/2025:23:50:02 +0100] "GET /acme/rest/directory HTTP/1.1" 200 390
10.10.1.20 - - [02/Jan/2025:23:50:07 +0100] "GET /acme/rest/directory HTTP/1.1" 200 390
10.10.1.20 - - [02/Jan/2025:23:52:09 +0100] "GET /acme/rest/directory HTTP/1.1" 200 390

10.10.1.20 is my proxmox backup appliance 3.1.2 which works nicely otherwise, but I'd like to have a CA-signed certificate for my backup appliance.

Any ideas?
 
Hello,

I'm getting the same error:

Code: 
[root@pbs1.example.com ~]$ proxmox-backup-manager acme account register default admin+acme@example.com --directory https://ca.example.com/acme/directory
Attempting to fetch Terms of Service from "https://ca.example.com/acme/directory"
Error: missing field `keyChange` at line 1 column 430

Code: 
$ pveversion
pve-manager/8.3.5/dac3aa88bac3f300 (running kernel: 6.8.12-8-pve)

I can also confirm that on pve, the exact same ACME CA works flawlessly.
 
You must log in or register to reply here.
Top Bottom