Hi all.
I'm trying to setup Encryption between Zabbix Server and Zabbix Agent, but I'm getting the following error:
The "Availability" shows as being active, but I can see those errors in the zabbix_agentd.log file for both of the hosts.
The zabbix_agentd.conf looks like this:
The /etc/zabbix/zabbix_agentd.psk file was created like this:
The host configuration looks like this:
Openssl version:
List of TLS avaialble (openssl ciphers -v | awk '{print $2}' | sort | uniq)
Am I missing something?
Thanks in advance!
Edit:
Zabbix server version: 5.4.9
Zabbix agent version: 5.4.9
I'm trying to setup Encryption between Zabbix Server and Zabbix Agent, but I'm getting the following error:
Code:
107733:20220109:232027.488 failed to accept an incoming connection: from 10.0.2.166: TLS handshake set result code to 1: file ../ssl/statem/extensions.c line 1618: error:141FA0FD:SSL routines:tls_psk_do_binder:binder does not verify: TLS write fatal alert "illegal parameter"
The zabbix_agentd.conf looks like this:
Code:
TLSConnect=psk TLSAccept=psk TLSPSKIdentity=PSK001 TLSPSKFile=/etc/zabbix/zabbix_agentd.psk TLSCipherPSK13=TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256
Code:
openssl rand -hex 64 | sudo tee /etc/zabbix/zabbix_agentd.psk
Openssl version:
HTML Code:
ii libxmlsec1-openssl:amd64 1.2.28-2 amd64 Openssl engine for the XML security library ii openssl 1.1.1f-1ubuntu2.10 amd64 Secure Sockets Layer toolkit - cryptographic utility ii python3-openssl 19.0.0-1build1 all Python 3 wrapper around the OpenSSL library
HTML Code:
SSLv3 TLSv1 TLSv1.2 TLSv1.3
Thanks in advance!
Edit:
Zabbix server version: 5.4.9
Zabbix agent version: 5.4.9
Comment