mysql ssl data replication problem certificate issue?
mysql> SHOW SLAVE STATUS \G
*************************** 1. row ***************************
Slave_IO_State: Connecting to master
1 row in set (0.00 sec)
100722 7:37:57 [ERROR] Slave I/O thread: error connecting to master 'firstname.lastname@example.org:3306': Error: 'Access denied for user 'slave_user'@'basestar.investmenttool.com' (using password: YES)' errno: 1045 retry-time: 60 retries: 86400
Read thte notes in the thread itself and decided to verify the certificate:
[root@basestar newcerts]# openssl verify -CAfile ca-cert.pem client-cert.pem
client-cert.pem: /C=US/ST=Illinois/L=Chicago/O=ISN Corporation/CN=basestar.investmenttool.com/emailAddressemail@example.com
error 20 at 0 depth lookup:unable to get local issuer certificate
Master is the main server, I'd just like data replication to a hot site.
the hot site is at a fixed ip address, and everything is wonderful. So I think.
Certificate issue is taken care of.
100722 15:57:59 [ERROR] Slave I/O thread: error connecting to master 'firstname.lastname@example.org:3306': Error: 'Access denied for user 'slave_user'@'basestar.investmenttool.com' (using password: YES)' errno: 1045 retry-time: 60 retries: 86400
I have tried the following:
telnet mercury.investmenttool.com 3306
This works. Proves there is no firewall problem.
I tried logging on as this user from the command prompt
mysql -u email@example.com -p
Gave the correct password
Server is not logging the problem.
Can you check the Host column of the mysql.user table in the slave_user row? What does it read?
Sure I will check it.
I found a firewall issue yesteday. Port 3306 on the firewall between the two servers was not forwarded to the slave.
That might gum things up a bit.
Fixed it and plan a retry.
Still does not work, even with the port forwarded.
I confirmed that port forwarding on port 3601 does work.
Yet the original error persists.
|All times are GMT +2. The time now is 12:26.|
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.