ejabberd - Comments for "Cannot connect to register user"

Re: Well, I might have made

sander — Tue, 31 Jan 2006 21:27:37 +0000

Abbarach wrote:

So I downloaded and installed OpenSSL and ran the command to generate a .pem file.

Now where should I put this file? In the root ejabberd folder?

The path where you put the file should match the path you define in the configuration file. If you for example put the certificate in /etc/certificate.ssl , you need to change "./ssl.pem" into "/etc/certificate.ssl" in the configuration file. This is how it works under most operating systems, unfortunately, the "userfriendly" ;) Windows do not use this common and userfriendly path system, so I am not sure how you should convert Windows paths to the configuration file...maybe there is some information elsewhere on the Internet available about this?

Quote:

Also, as a sub-question, what do I need to put in the hosts entry if this will be a private in-house network? The machine name? A fully qualified domain name? Just localhost?

Yes, the machine DNS name: an example, assume I have an internal DNS that gives my computers names. The computer that runs ejabberd has the imaginary name "instantmessaging.box", other computers in my network can ping this server by using that name. In this case you should have a line like this in your configuration file:

{hosts, ["instantmessaging.box"]}.

Well, I might have made

Abbarach — Mon, 30 Jan 2006 14:45:28 +0000

Well, I might have made progress...

I looked at the settings, and it looks like it came with the SSL/TLS stuff commented out already. So I downloaded and installed OpenSSL and ran the command to generate a .pem file.

Now where should I put this file? In the root ejabberd folder? Tried it there, and also installed it as the SSL certificate in Exodus, and now when I connect I get an error that states:
"There was an error trying to authenticate you.
Either you used the wrong password, or the account is already in use by someone else"

I've tried multiple accounts, that I know were not in use, (nothing should be in use) and they all give this error.

Also, as a sub-question, what do I need to put in the hosts entry if this will be a private in-house network? The machine name? A fully qualified domain name? Just localhost?

Thanks for the help, I appreciate it.

Try deactivating STARTTLS

legoscia — Sun, 29 Jan 2006 11:36:11 +0000

The default ejabberd configuration references ./ssl.pem, a certificate to be used for encryption. Exodus requests encryption by default, but ejabberd just drops the connection if the certificate file is not there.

In the configuration file, comment out the lines referencing ./ssl.pem, and uncomment the c2s line without tls in the listener section.

(At least, that might be what's wrong)