I’m trying to connect my Deadline Monitor to the Remote Connection Server using TLS. For testing purposes, they are both on the same machine. I was able to connect when TLS was disabled. I’m on Windows 10.
I initially tried using the certificates generated by the install and then I tried using the SSLGenerator (https://docs.thinkboxsoftware.com/products/deadline/10.0/1_User%20Manual/manual/proxy-sslgen.html#ssl-cert-gen-ref-label). Using those steps, I repeated step #4 to generate a pfx file for the server (even though the instructions don’t say to do this), as this seems to be the only format that I can supply for the ‘tls_cert’ argument for deadlinercs.exe.
I’m starting deadlinercs from a Windows command prompt with no arguments. These are the config options in the deadline.ini file:
TlsAuth=True
TlsListenPort=4434
TlsServerCert=C:\DeadlineDatabase10\certs\deadline.pfx
#TlsCaCert=C:\DeadlineDatabase10\certs\ca.crt
If I comment out the TlsCaCert option, I get the following error when starting the RCS:
C:\Program Files\Thinkbox\Deadline10\bin>deadlinercs.exe
Deadline Remote Connection Server 10.0 [v10.0.28.2 Release (31a4a2e50)]
Connected to “C:\Users\jlehrman\Documents\deadline_repo_10”
Exception Details
DeadlineConfigException – An error occurred while trying to load the specified CA certificate:
The system cannot find the file specified.
Exception.Data: ( )
Exception.TargetSite: Deadline.Configuration.HttpsServerSettings ParseSettings(FranticX.Applications.Consoles.CommandLineParser, Int32, Boolean)
Exception.Source: deadline
Exception.HResult: -2146233088
Exception.StackTrace:
at Deadline.Configuration.HttpsServerSettings.ParseSettings(CommandLineParser parser, Int32 previousListenPort, Boolean ignoreConfig)
at DeadlineRCS.DeadlineRCSApp.Main(String args)
These are the settings for the Monitor:
This is the error I recieve from the Monitor when trying to connect:
This is the output from the RCS:
C:\Program Files\Thinkbox\Deadline10\bin>deadlinercs.exe
Deadline Remote Connection Server 10.0 [v10.0.28.2 Release (31a4a2e50)]
Connected to “C:\Users\jlehrman\Documents\deadline_repo_10”
Listening for HTTP requests on 0.0.0.0 port 8080 loopbackOnly True…
Listening for TLS connections on 0.0.0.0:4434…
[tls_conn#1] Connection accepted from 127.0.0.1:58665; starting TLS negotiation. (1 total connections)
[tls_conn#1] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#1] Connection closed. (0 total connections)
[tls_conn#2] Connection accepted from 127.0.0.1:58667; starting TLS negotiation. (1 total connections)
[tls_conn#2] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#2] Connection closed. (0 total connections)
[tls_conn#3] Connection accepted from 127.0.0.1:58701; starting TLS negotiation. (1 total connections)
[tls_conn#3] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#3] Connection closed. (0 total connections)
[tls_conn#4] Connection accepted from 127.0.0.1:58702; starting TLS negotiation. (1 total connections)
[tls_conn#4] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#4] Connection closed. (0 total connections)
[tls_conn#5] Connection accepted from 127.0.0.1:58709; starting TLS negotiation. (1 total connections)
[tls_conn#5] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#5] Connection closed. (0 total connections)
[tls_conn#6] Connection accepted from 127.0.0.1:58710; starting TLS negotiation. (1 total connections)
[tls_conn#6] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#6] Connection closed. (0 total connections)
[tls_conn#7] Connection accepted from 127.0.0.1:58720; starting TLS negotiation. (1 total connections)
[tls_conn#7] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#7] Connection closed. (0 total connections)
[tls_conn#8] Connection accepted from 127.0.0.1:58721; starting TLS negotiation. (1 total connections)
[tls_conn#8] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#8] Connection closed. (0 total connections)
[tls_conn#9] Connection accepted from 127.0.0.1:58750; starting TLS negotiation. (1 total connections)
[tls_conn#9] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#9] Connection closed. (0 total connections)
[tls_conn#10] Connection accepted from 127.0.0.1:58751; starting TLS negotiation. (1 total connections)
[tls_conn#10] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#10] Connection closed. (0 total connections)
[tls_conn#11] Connection accepted from 127.0.0.1:58765; starting TLS negotiation. (1 total connections)
[tls_conn#11] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#11] Connection closed. (0 total connections)
[tls_conn#12] Connection accepted from 127.0.0.1:58766; starting TLS negotiation. (1 total connections)
[tls_conn#12] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#12] Connection closed. (0 total connections)
[tls_conn#13] Connection accepted from 127.0.0.1:58770; starting TLS negotiation. (1 total connections)
[tls_conn#13] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#13] Connection closed. (0 total connections)
[tls_conn#14] Connection accepted from 127.0.0.1:58772; starting TLS negotiation. (1 total connections)
[tls_conn#14] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#14] Connection closed. (0 total connections)
[tls_conn#15] Connection accepted from 127.0.0.1:58797; starting TLS negotiation. (1 total connections)
[tls_conn#15] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#15] Connection closed. (0 total connections)
[tls_conn#16] Connection accepted from 127.0.0.1:58800; starting TLS negotiation. (1 total connections)
[tls_conn#16] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#16] Connection closed. (0 total connections)
[tls_conn#17] Connection accepted from 127.0.0.1:58803; starting TLS negotiation. (1 total connections)
[tls_conn#17] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#17] Connection closed. (0 total connections)
[tls_conn#18] Connection accepted from 127.0.0.1:58805; starting TLS negotiation. (1 total connections)
[tls_conn#18] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#18] Connection closed. (0 total connections)
[tls_conn#19] Connection accepted from 127.0.0.1:58834; starting TLS negotiation. (1 total connections)
[tls_conn#19] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#19] Connection closed. (0 total connections)
[tls_conn#20] Connection accepted from 127.0.0.1:58835; starting TLS negotiation. (1 total connections)
[tls_conn#20] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#20] Connection closed. (0 total connections)
[tls_conn#21] Connection accepted from 127.0.0.1:58838; starting TLS negotiation. (1 total connections)
[tls_conn#21] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#21] Connection closed. (0 total connections)
[tls_conn#22] Connection accepted from 127.0.0.1:58839; starting TLS negotiation. (1 total connections)
[tls_conn#22] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#22] Connection closed. (0 total connections)
Update timeout has been set to 30 seconds
Stdout Redirection Enabled: True
Stdout Handling Enabled: False
Popup Handling Enabled: False
Using Process Tree: True
Hiding DOS Window: True
Creating New Console: False
Running as user: jlehrman
Executable: “C:\Program Files\Thinkbox\Deadline10\bin\deadlinecommand.exe”
Argument: -RunCommandForRepository Repository C:\Users\jlehrman\Documents\deadline_repo_10;C:\DeadlineDatabase10\certs\Deadline10Client.pfx -DoRepositoryRepair True False True
Full Command: “C:\Program Files\Thinkbox\Deadline10\bin\deadlinecommand.exe” -RunCommandForRepository Repository C:\Users\jlehrman\Documents\deadline_repo_10;C:\DeadlineDatabase10\certs\Deadline10Client.pfx -DoRepositoryRepair True False True
Startup Directory: “C:\Program Files\Thinkbox\Deadline10\bin”
Process Priority: BelowNormal
Process Affinity: default
Process is now running
Skipping repository repair because it is not required at this time
Process exit code: 0
Update timeout has been set to 30 seconds
Stdout Redirection Enabled: True
Stdout Handling Enabled: False
Popup Handling Enabled: False
Using Process Tree: True
Hiding DOS Window: True
Creating New Console: False
Running as user: jlehrman
Executable: “C:\Program Files\Thinkbox\Deadline10\bin\deadlinecommand.exe”
Argument: -RunCommandForRepository Repository C:\Users\jlehrman\Documents\deadline_repo_10;C:\DeadlineDatabase10\certs\Deadline10Client.pfx -DoHouseCleaning True False True
Full Command: “C:\Program Files\Thinkbox\Deadline10\bin\deadlinecommand.exe” -RunCommandForRepository Repository C:\Users\jlehrman\Documents\deadline_repo_10;C:\DeadlineDatabase10\certs\Deadline10Client.pfx -DoHouseCleaning True False True
Startup Directory: “C:\Program Files\Thinkbox\Deadline10\bin”
Process Priority: BelowNormal
Process Affinity: default
Process is now running
[tls_conn#23] Connection accepted from 127.0.0.1:58884; starting TLS negotiation. (1 total connections)
[tls_conn#23] Error: The remote certificate is invalid according to the validation procedure. (AuthenticationException)
[tls_conn#23] Connection closed. (0 total connections)
[tls_conn#24] Connection accepted from 127.0.0.1:58886; starting TLS negotiation. (1 total connections)
[tls_conn#24] Error: Authentication failed because the remote party has closed the transport stream. (IOException)
[tls_conn#24] Connection closed. (0 total connections)
Skipping house cleaning because it is not required at this time
Process exit code: 0
Any help would be appreciated. I’m at a loss about what to try next.
Cheers,
Jesse