When configuring XCOM to use SSL on XCOM for UNIX, got the following error:
XCOMU0780E Txpi 316: TxpiSSL peer certificate: Certificate verification failed (DNS name does not match) error 5:
XCOM™ Data Transport® for UNIX/Linux PC
This is a configuration problem in the configssl.cnf:
# Mandatory, YES/NO
[VERIFY_MACHINE]
INITIATE_SIDE = YES
RECEIVE_SIDE = YES
but the actual DNS or HOSTNAME was not defined in the certificates or configssl.cnf.
When you want to do "machine verification" with SSL as you have specified, you must generate the certificates with a valid DNS and specify that in the configssl.cnf as the HOST_NAME.
If using the XCOM sample certificates:
Note: You have to specify actual names.
If you don't want "machine" verification, then turn off the parameter in the configssl.cnf.