Hello,
I set up 2 Remote Connection Servers (RCS) for my repository. One without TLS 8080
and one with TLS auth required 4433
.
I have no problem connecting to the Server over 8080
. However, once I try to connect to the RCS with TLS I get:
The Monitor was unable to connect to the specified server (<ip>:4433).
Failed to establish connection to <ip>:4433 due to a communication error.
---> System.Security.Authentication.AuthenticationException: The remote certificate was rejected by the provided RemoteCertificateValidationCallback.
at System.Net.Security.SslStream.SendAuthResetSignal(ReadOnlySpan`1 alert, ExceptionDispatchInfo exception)
at System.Net.Security.SslStream.CompleteHandshake(SslAuthenticationOptions sslAuthenticationOptions)
at System.Net.Security.SslStream.ForceAuthenticationAsync[TIOAdapter](Boolean receiveFirst, Byte[] reAuthenticationData, CancellationToken cancellationToken)
at System.Net.Http.ConnectHelper.EstablishSslConnectionAsync(SslClientAuthenticationOptions sslOptions, HttpRequestMessage request, Boolean async, Stream stream, CancellationToken cancellationToken)
--- End of inner exception stack trace ---
at Deadline.Controllers.RemoteDataController..ctor(RepositoryConnectionSettings settings)
at Deadline.Applications.DeadlineApplicationManager.CreateDataController(RepositoryConnectionSettings connSettings)
at Deadline.Applications.DeadlineApplicationManager.Connect(RepositoryConnectionSettings connSettings, Boolean updateScriptManager)
at Deadline.Monitor.MonitorManager.Connect(RepositoryConnectionSettings connectionSettings, Boolean updateScriptManager)
at InvokeStub_MonitorManager.Connect(Object, Span`1)
at System.Reflection.MethodBaseInvoker.InvokeWithFewArgs(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
The Deadline console also doesn’t have any helpful error:
ERROR: UpdateClient.MaybeSendRequestNow caught an exception: POST https://<ip>:4433/rcs/v1/update returned "One or more errors occurred. (The SSL connection could not be established, see inner exception.)" (Deadline.Net.Clients.Http.DeadlineHttpRequestException)
ERROR: DataController threw a configuration exception during initialization: Failed to establish connection to <ip>:4433 due to a communication error. (Deadline.Configuration.DeadlineConfigException)
I have ensured that the port is open with nc -zv <ip> 4433
.
I have ensured that I am using the certificates that were generated when installing the RCS:
/opt/Thinkbox/Deadline10/certs/Deadline10RemoteClient.pfx
The RCS server command does not have any information about any connection attempt even when running --verbose 5
(unsure about what values to use for verbose…).
The RCS uses this deadline.ini
configuration:
[Deadline]
HttpListenPort=8080
TlsListenPort=4433
TlsServerCert=/opt/Thinkbox/Deadline10/certs/rcs.pfx
TlsCaCert=/opt/Thinkbox/Deadline10/certs/ca.crt
TlsAuth=True
LaunchRemoteConnectionServerAtStartup=True
KeepRemoteConnectionServerRunning=True
LicenseMode=LicenseFree
Region=
LauncherListeningPort=17000
LauncherServiceStartupDelay=60
AutoConfigurationPort=17001
SlaveStartupPort=17003
SlaveDataRoot=
RestartStalledSlave=false
NoGuiMode=true
LaunchSlaveAtStartup=false
AutoUpdateOverride=
IncludeRCSInLauncherMenu=true
RemoteControl=Blocked
ConnectionType=Direct
NetworkRoot=/opt/Thinkbox/DeadlineRepository10
DbSSLCertificate=
Does anyone have any ideas on how to troubleshoot this?
Thank you,
Beat