mosquitto ssl/tls with comodo ssl

Asked by blackjackpsp

Hi everyone,
I'm configuring my ssl/tls secured broker.
It works with CA self signed, but I want to use a trusted root CA.
So I've bought a comodo Positive SSL to sign my broker, but they give me a server certificate, a ca-bundle file and a pkcs#7 file.
I've tried to ask them how I can install this files in my mosquitto server, but the hadn't give me a response.
How I can set my broker ssl/tls using this files?

Thanks in advance.

Question information

Language:
English Edit question
Status:
Solved
For:
mosquitto Edit question
Assignee:
No assignee Edit question
Solved by:
blackjackpsp
Solved:
Last query:
Last reply:
Revision history for this message
blackjackpsp (blackjackpsp) said :
#1

I've installed the server certificate and the server key, but when I test my websocket I get the error

"The certificate is not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate. Learn more about this error. You can fix this by following Comodo's Certificate Installation Instructions for your server platform (use these instructions for InstantSSL). Pay attention to the parts about Intermediate certificates."

my configuration is

listener 10000 127.0.0.1
protocol websockets
cafile /etc/mosquitto/ca_certificates/application/projectxdom_co_uk.ca-bundle
certfile /etc/mosquitto/ca_certificates/application/projectxdom_co_uk.crt
keyfile /etc/mosquitto/ca_certificates/CC3200/server.key

but doesn't work

Revision history for this message
blackjackpsp (blackjackpsp) said :
#2

I solved the error.
I've concatenated server certificate and CA in the same file, then I replaced certfile and capath.

Revision history for this message
Alex (alopezte) said :
#3

Please, could you share your conf file? I have de same problem but I have not understood how have you fixed the problem.

Thanks in advance!!