Hello,
After Jeremy pointed out an accounting problem at Lancaster during the
meeting we've found that our monbox is having troubles which seem to be
certificate-centric in nature. Crons trying to generated proxies for
rgma and the bdii are getting errors like:
ERROR: Could not verify the signature of the generated proxy certificate
This is likely due to a non-matching user key and cert
Having a look all the various copies of the right cert are in the right
places ( ../rgma/.., ../grid-security/.. and ../tomcat5/.. ). Is there
an openssl (or similar) incantation that would allow us to check if the
cert and key match? I haven't been able to find one. If they don't match
is there an alternative to the only course of action that I can see,
which is to renew the certificate and thus get a new cert/key pair?
Thanks in advance,
Matt
|