I have an environment which I’m enabling client authentication for a number of relays. I’ve been doing some general testing and I can’t get clients to talk to an authenticating relay.
The moment I make a relay an authenticating one via the client setting "
_BESRelay_Comm_Authenticating=1"
all the clients drop off and switch to their secondary. The client log file clearly shows that it attempts to connect but I get an error:
Registration backing off from SSL, attempting in clear text
Also, if I try to check relay diagnostics after enabling an authenticating relay (http://:52311/rd) I get a 403 error and the page doesn’t load.
Any ideas on where I can troubleshoot further? Any environment configurations I need to double check?
This particular issue seems to be with 9.1x (not sure if it effects more than one version however I experienced it wit 9.1.1117) that will hopefully be fixed for the next release
. In the meantime, you can try a manual key exchange as a short term fix:
We are also on 9.1.1117. I see this issue too. It seems that this also breaks relay affiliation. The clients I have upgraded to 9.1.1117 have all reported to either their failover server or the main server. Doing ‘relay select’ does not get them to their local relay even when I confirmed it is available.