Hello everyone,
I am currently trying to upgrade from version 1.1.15 to 1.6.3. After adding trustDomain to my controller-config, all connections are working again.
However, I have moved the ZAC to a separate port, the corresponding config in the controller looks like this:
web:
- name: public
[...]
- name: private
bindPoints:
- interface: 0.0.0.0:8080
address: mgmt.openziti.example.com:443
options:
idleTimeout: 5000ms
readTimeout: 5000ms
writeTimeout: 100000ms
minTLSVersion: TLS1.2
maxTLSVersion: TLS1.3
apis:
- binding: edge-client
options: { }
- binding: edge-management
options: { }
- binding: fabric
options: { }
- binding: health-checks
options: { }
- binding: zac
options:
location: /ziti-console
indexFile: index.html
In version 1.1.15 I was able to reach ZAC, after the upgrade I now see the following error message in the log:
Jun 26 09:40:07 server01 openziti[49778]: panic: could not validate server at web[1]: identity is not valid for provided host: [mgmt.openziti.example.com]. is valid for: [127.0.0.1, ::1, localhost, openziti.example.com]
Here is the question, how do I solve this? Thanks for your help