VNC console problem with wildcard certificates

Nakata

Renowned Member
Jun 13, 2012
53
0
71
Hello,

i have seen there was some posts about problem with vnc console from 2.3 times, but havent find solution

I've been using my self-signed certificated in Proxmox.

Now i have decided to go with comercial certificates, so i bought Class2 wildcard certificate from StartCom and set certificates exactly according http://pve.proxmox.com/wiki/HTTPSCertificateConfiguration
Proxmox GUI is working fine and browsers says that i'm using certificate identified byt StartCom, everything's fine
You can see screenshot here http://mixx.org/pic/proxmox-firefox-cert.png

But then when i try to open VNC Console, i get messages about untrusted cert
http://mixx.org/pic/proxmox-java-cert.png

And finally error message
Error: TLS handshake failed javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: certificate does not match
http://mixx.org/pic/proxmox-vnc-error.png

Situation is same in all browsers
 
Last edited:
nothing of this happens when i create host.domain.tld certificate even self signed, problem is just with wildcard certs *.domain.tld
 
Sorry, you can delete this post
I had malformed intermediate certificate and missed that part about testing in http://www.digicert.com/help/

Now everything is working, only thing is that Java doesnt trust to StartSSL cert ?
java-untrusted.png
 
On another computer with newer java,message looks like this
java1.png
 
Last edited: