You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@cassandra.apache.org by "Jim Witschey (JIRA)" <ji...@apache.org> on 2015/09/17 19:08:04 UTC

[jira] [Commented] (CASSANDRA-8711) cassandra 2.1.2 cqlsh not able to connect when ssl client encryption enabled

    [ https://issues.apache.org/jira/browse/CASSANDRA-8711?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14803237#comment-14803237 ] 

Jim Witschey commented on CASSANDRA-8711:
-----------------------------------------

[~jeffl] I'm closing this for now. Please feel free to reopen if you have more information.

> cassandra 2.1.2 cqlsh not able to connect when ssl client encryption enabled
> ----------------------------------------------------------------------------
>
>                 Key: CASSANDRA-8711
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-8711
>             Project: Cassandra
>          Issue Type: Bug
>            Reporter: Jeff Liu
>              Labels: cqlsh
>             Fix For: 2.1.x
>
>
> I have been trying to setup client encryption on a three nodes 2.1.2 version cassandra cluster and keep getting the following error:
> {noformat}
> Connection error: ('Unable to connect to any servers', {'localhost': ConnectionShutdown('Connection <AsyncoreConnection(44536208) localhost:9160 (closed)> is already closed',)})
> {noformat}
> I tried with both cqlsh and datatax python cassandra-driver and no luck to login.
> I created /rooot/.cassandra/cqlshrc file for cqlsh settings, the content is:
> {noformat}
> [authentication]
> username =
> password =
> [connection]
> hostname = localhost
> port = 9160
> factory = cqlshlib.ssl.ssl_transport_factory
> [ssl]
> certfile = /root/.cassandra/localhost_user1.pem
> validate = false ## Optional, true by default
> {noformat}
> my cassandra.yaml configuration related to client_encryptions:
> {noformat}
> client_encryption_options:
>     enabled: True
>     keystore: /etc/cassandra/conf/.keystore
>     keystore_password: cassnest
> {noformat}
> the keystore, truststore, cert/pem (localhost_user1.pem) key have been verified to be working fine for datastax enterprise version.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)