Jump to content

Search the Community

Showing results for tags 'ssl'.

More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Plastic SCM
    • General
    • Installation and configuration
    • Unity 3D
    • Plastic SCM on Mac
    • Plastic SCM on Linux
    • Gluon
    • Git interop
    • Integrations
    • Community Edition
    • Branching and merging
    • Announcements
  • Plastic SCM 4.0 Beta (Closed)
  • Plastic Cloud
    • General
    • Configuration
  • SemanticMerge
    • General
    • License
    • SCM's configuration
    • Share your experience!
    • External Parsers
  • GitJungle
  • Method History for Subversion

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL







Found 13 results

  1. Hello, I'm planning a completely fresh install of Plastic, no old data, migration or anything. So i thought it might make sense to take a look at the "new generation of our server, built on .NET Core and managed with systemd". It sounds like a very good step up in many areas and already being on the future version would potentially save me a difficult migration later on. I'm installing on CentOS and followed this procedure. The installation itself was overall very easy but there seem to be some things i either don't understand or are not yet working. 1. Primarily i can't get ssl to work. For the web interface this is not a big issue, i could just put a reverse proxy in front of it for that but for the client I always get an error when trying to connect: Authentication failed because the remote party has closed the transport stream. No ssl connection works fine. I tried the official procedures described here and also several other things but always get the same error. It also seems like the remoting.conf is no longer used at all? I then came along this thread claiming that it's mentioned somewhere that it's not supported yet but i could not find that information anywhere. So my first question is whether someone can confirm that ssl is not working yet and if there is an official ETA on implementing that? 2. When trying to fix ssl i also wanted to take a look at the log files but that turned out to be another issue. I can't find them. I guess because the new server is using systemd its logging is different? And logs might be in a different location but does someone know where? Or how to set logging up correctly? 3. Last but not least i wonder if there are any other limitations / missing features the new generation currently has that one should be aware of? I Just need to make an informed decision on what path to follow. Sorry for the long and overloaded post and thanks a lot in andanced for any help.
  2. Hello everybody, I suddently have a problem with one of my Plastic SCM client on Windows. Everything worked well, but since last week I can't connect to my Plastic server anymore. Nothing changes in server config nor in my client config, but now I've got this message "The remote certificate is not valid according to the validation procedure" (see attached picture). The server has an attached domain with a valid, not expirated, certificate. But, as my client is on the same network as the server and as my box can't do loopback (domain name pointing to itself) I have an entry in my client host file to redirect domain name to local server IP address. This worked for more than 3 years without problem. The only thing that happened last week is that I used my PC out of office, so I removed the redirect line in my client host file in order to do my commit through "real" internet. This also worked properly. But a few hours later when I restarted Plastic from my office again (with local host redirection), it began to display the error message. Server and clients were in version, I updated my Windows client to but the problem did not disappear. Two other clients (on Mac) don't suffer from the problem and continu to reach the server without problem, locally or through internet. So my question is : is there a kind of certificate cache on Windows client ? ... Perhaps wrong data was cached when I came back to my office. I tried to clear windows ssl state in "internet options" but it had no effect. Any idea ?
  3. This error started showing up this morning and no idea why. We have a yearly license and I can't seem to get this thing to auto-renew even though I go through the steps every month. Anyways, this month I can't seem to get the error to go away with the usual methods.. I have tried regenerating the token and running the configure server command, I have tried re-downloading the .lic file and replacing it and still seeing this error. I am upgrading the server to the latest version now and will update this thread if that fixed the issue
  4. Any idea how to solve this problem (short of turning off SSL connections)? I want to perform a cm crt on a file listed as binary when it should be listed as text - so I created a batch file to run it for all such files. When I actually installed and named the server, the server name is as displayed in the cert line below - Plastic01 with capital P. The GUI works fine, and all of the .config files actually have it specified with a capital. -- the command line lists the server name in lower case. WARNING: the secure connection hostname provided in the server certificate doesn't match the server's hostname. This means that the certificate was not issued to this hostname or that there is a network configuration problem with this host. - Certificate hostname: CN=Plastic01.gohealthcast.com - Server hostname: CN=plastic01.gohealthcast.com If you want to continue connecting to this host, choose 'Yes'. The certificate validation will continue (not recommended). If you want to abandon the connection, choose 'No' (recommended). Choose an option (Y)es, (N)o (hitting Enter selects 'No'): no matter what option I use, it prompts with this message for EVERY file - even when I confirm to use it anyway, I get this message The server you are connecting to has sent a certificate that is not in the store. This is normal if it is the first time that you connect to this server. Certificate details: - Issued to: CN=Plastic01.gohealthcast.com - Issued by: CN=Plastic01.gohealthcast.com - Expiration date: 3/21/2023 5:20:13 PM - Certificate hash: 7B1FA6D79BB4C567C30EE5DD23CCC24D0670EA71 If you trust this host, choose 'Yes' to add the key to Plastic SCM's key store (recommended if it is the first time you connect to this server). If you want to carry on connecting just once, without adding the key to the store, choose 'No'. If you do not trust this host, choose 'Cancel' to abandon the connection. Choose an option (Y)es, (N)o, (C)ancel (hitting Enter cancels): Hitting YES here lets the command execute, but does NOT put the cert name in the store, I expect because it shows correctly (and is probably already present under the store with the correct case in the name) - consequently, it continuously prompts for every file with no way to "mass confirm"
  5. When running gtkplastic and connecting to a server it fails to accept the SSL certificate. It asks me to accept the certificate twice (I press Yes): Then it shows this error message: When I try running clconfigureclient on the command line I get no chance to accept the certificate and get errors too: When I run as sudo the same error is shown: But when I run 'sudo gtkplastic' I can accept the certificate and it actually works. The issue is likely due to insufficient privilege but the error message does not tell me that, also I do not understand why running 'sudo clconfigureclient' does not work if it is a privilege issue. Please fix this issue or at least provide a proper error message.
  6. Hi! I try to establish a connection to Jira (self hosted) via an ssl connection via the 443 port I always get an error: Test Connection failed. Please Review the entered values. the plastic log only shows me these message: 2017-08-04 13:39:20,805 ERROR jiraextensionrest - Could not get the statuses from the JIRA server: The underlying connection was closed: An unexpected error occurred on a send. 2017-08-04 13:39:20,805 DEBUG jiraextensionrest - Stack trace: at System.Net.HttpWebRequest.GetResponse() at Codice.Client.IssueTracker.Jira.JiraRestClient.GetResponse(HttpWebRequest request) at Codice.Client.IssueTracker.Jira.JiraRestClient.GetStatuses() I'm pretty sure the host settings and rest of the settings are correct, as i can get access via the api through a browser or curl (also ssl). the host name goes something like this : https://my.jiraserverdomainname.com:443/jira plastic version: jira version: 7.3.2 Thank you Fabian
  7. Hi All, We are attempting to configure PlasticSCM Server utilizing a signed CA Certificate. We create our Certificates in house and then sign then against a inhouse CA authority instead of creating certificates through the documentation methods. We have imported our signed CA certificate and then using the MMC of windows and certificates have exported the certificate into a .pfx file. We included the private key with the .pfx file. \ However, any attempt to log into using SSL (even local) ends up with the error: The server stopped the handshake. We are attempting to use Active Directory authentication. We can connect using the nonsecured port but are having issues with the SSL. I cannot figure out why the server is refusing connections on the port. It is listening on it... But when we attempt to connect, the Debug log shows the following errors: conn #: A call to SSPI failed, see inner exception. Is there any other configuration or log file I can look into to figure out why the server keeps smacking our hands away? Thanks! Krelek1000
  8. I am trying to run a PlastiSCM server on my OSX 10.11 (El Capitan) Laptop which syncs per ssl to my work server. Without ssl its no problem. When i try to access per ssl it shows an error in the sync replication view: 'Error: Only the server administrator can accept a certificate on the server' at the same time the console logs: 21.10.15 23:52:21.489 sandboxd[28676]: ([39948]) macplastic(39948) System Policy: deny file-write-create /usr/share/.mono maybe an problem with the rootless feature? Or i'm not capable of putting the certificate at the right place under OSX ^^ Thanks!
  9. Hello Every body I've just installed Macplastic beta on my mac running Yosemite. The app starts but I'm totally unable to connect to my ssl secured server. No problems locally or through network with a windows client. In preferences I entered the following things : plastic server : ssl://dyn.mydomain.com credentials : myLoginAsUsual myPassword Then I hit "Apply" and the little waiting wheel starts to roll forever... indicating "Connecting..." After 10 minutes I aborded. I'm sure I didn't have any mistake in my credential, but perhaps I forgot an "@ something ..." or something else. Does someone succeed in connecting to SSL server with macplastic beta ?
  10. Hello Plastic Community, New user of PlasticSCM here, but not new to DVCS. I'm attempting to install and use PlasticSCM for the first time on this Linux machine, but I'm encountering a client crash. The short description: Plastic ($ plastic) crashes if I attempt to setup an SSL connection. I've attached the command line output form the crash. Help, please. The background: I'm running Ubuntu 14.10. I've installed the Linux client per the Plastic instructions. Checking ps waux, the plasticd process is running. I used scm.[ourserver].com:8088 I checked the "Use encryption (SSL)" checkbox I clicked the "Connect" button At this point, the process pops up a new window, then crashes before drawing anything in it. The title of this popup window is "Hostname mismatch in secure connection". I'm new to Plastic, but very well versed in Linux, administration, and DVCS in general, so any further information I can provide, or suggestions for how to fix this issue would be much appreciated. Thanks! Kevin crash_info.txt
  11. Hello everybody, I am new to Plastic and wonder if the following is a bug. As far as I can tell creating a connection profile using an SSL channel will trigger the installation of the respective server key. We are talking UPWorkingMode here. 1) Create automatic connection profile on SSL channel for userA@server userB@serve 2) Create new workspace. An error pops up telling you that somebody is trying to add the respective server key to some dictionary twice. Press 'OK'. You will not be able to select a default repository in the 'New Workspace' dialog and cannot create a new workspace. 3) Cancel workspace creation dialog. Create workspace on command line. This still works fine. Some thoughts: I did this nasty experiment because I wondered how Plastic is able to handle automatic connections of different users to one server without going schizophrenic. Looks like the Plastic command line is operating with a dedicated user all the time, while the GUI client allows for multiple personality disorder.... All in all this looks like a bug to me, but I am not Plastic savy yet. Comments anybody? Best, Dirk
  12. When attempting to sync repos over ssl I get an error: "No Channel Found" Anyone know what I am doing wrong?
  13. I'd like to setup Plastic to use LDAP authentication with SSL, connecting to Novell's eDirectory. There seem to be several issues with this. First, I can't seem to get Plastic to connect using SSL to any LDAP (tried both the LDAP interface to Active Directory as well as eDirectory). Are SSL connections not supported? Trying to bind to LDAP while sending credentials information across the network unencrypted simply won't work anywhere where security is a priority. Second, it seems that Plastic's implementation of "pure" LDAP is maybe lacking? I'm not sure. Does plastic truly support LDAP, or just the LDAP interface to Active Directory? On the configuration wizard for LDAP, I enter the host and domain for the eDirectory server. I then have tried several different ways of specifying the user, all to no avail. My normal user id in order to bind would be fully qualified, such as "uid=username,ou=orgunit,dc=subdomain,dc=topleveldomain". There simply seems no way for me to be able to get the "Test Connection" button to work. The response it gives is unhelpful, telling me the username, password, or domain is incorrect. I know the user and password are correct because I can bind using those credentials through an LDAP explorer. The thing I'm not so sure about is the domain. I've tried several different strings in that box, all to no avail. I've tried the host name, the "subdmian.topdomain", the "dc=subdomain,dc=topdomain" syntax, I even tried including the ou in that as well, all to no avail. What am I missing here? 1) Does Plastic support connecting to LDAP over SSL? 2) Does Plastic support connecting to Novell's eDirectory? If so, how does one go about doing that? I have no problems connecting using other tools. As an aside...would the developers of Plastic ever consider adding a plugin/extension capability for authentication? Many other unrelated products (such as Jira) do this, just defining an interface and allowing customer to implement their own mechanism. It would be nice, for example, to simply write a quick and dirty plugin that just forwards the credentials specified to our federated SSO provider.
  • Create New...