VNC console problem with wildcard certificates

Nakata

Renowned Member
Jun 13, 2012
52
0
71
Hello,

i have seen there was some posts about problem with vnc console from 2.3 times, but havent find solution

I've been using my self-signed certificated in Proxmox.

Now i have decided to go with comercial certificates, so i bought Class2 wildcard certificate from StartCom and set certificates exactly according http://pve.proxmox.com/wiki/HTTPSCertificateConfiguration
Proxmox GUI is working fine and browsers says that i'm using certificate identified byt StartCom, everything's fine
You can see screenshot here http://mixx.org/pic/proxmox-firefox-cert.png

But then when i try to open VNC Console, i get messages about untrusted cert
http://mixx.org/pic/proxmox-java-cert.png

And finally error message
Error: TLS handshake failed javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: certificate does not match
http://mixx.org/pic/proxmox-vnc-error.png

Situation is same in all browsers
 
Last edited:
nothing of this happens when i create host.domain.tld certificate even self signed, problem is just with wildcard certs *.domain.tld
 
Sorry, you can delete this post
I had malformed intermediate certificate and missed that part about testing in http://www.digicert.com/help/

Now everything is working, only thing is that Java doesnt trust to StartSSL cert ?
java-untrusted.png
 
On another computer with newer java,message looks like this
java1.png
 
Last edited:

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!