This looks to be caused by self-signed certificates.
zmlocalconfig -e "data_source_trust_self_signed_certs=true"
Or install the external cert into the server keystore manually.
~
There's also ssl_allow_untrusted_certs/ssl_allow_accept_untrusted_certs/ssl_allow_mismatched_certs but I think we only make use of those in ZD.
Now when admins just set data_source_trust_self_signed_certs true to workaround this issue, users have absolutely no warning 'allow?' prompt if something should actually be amiss with another self-signed cert elsewhere next time.
Need a RFE for a new data_source_allow_accept_trust_self_signed_certs, or for ZCS to use those ZD values instead which are all true now by default. |