S3 connector - Continuous alerting if SSL certificate is valid for only bucket adresses

Advertisement

mormao
Guest

S3 connector - Continuous alerting if SSL certificate is valid for only bucket adresses

We have an installation of S3 server in which each bucket is targeted with an address like
bucket.s3.company.com
.
The SSL certificate is valid for "*.s3.company.com", but the root is not tought to be accessible from outside and its address (from inside company's network) is "s3.company.com", which is not valid for the wildcard certificate
*.s3.company.com
.
The result is that each time a request is done (open a folder, upload or download a file, etc.) a dozen of alerts is shown, with a message like
The server certificate is unknown. There are no warranties that the server is who declares to be [...] if you trust it and want to store the certificate click [Yes]
, locking all the opened sessions until you click "Yes" dozens of time for each operation.

After clicking "Yes" on all promtped warnings, normally the operations conludes successfully, but all that clicking makes WinSCP unusable...

winscp-error.png

Reply with quote

Advertisement

martin
Site Admin
martin avatar
Joined:
Posts:
34,328
Location:
Prague, Czechia

Re: S3 connector - Continuous alerting if SSL certificate is valid for only bucket adresses

Please attach a full session log file showing the problem (using the latest version of WinSCP).

To generate the session log file, enable logging, log in to your server and do the operation and only the operation that causes the error. Submit the log with your post as an attachment. Note that passwords and passphrases not stored in the log. You may want to remove other data you consider sensitive though, such as host names, IP addresses, account names or file names (unless they are relevant to the problem). If you do not want to post the log publicly, you can mark the attachment as private.

Reply with quote

Advertisement

You can post new topics in this forum