ansaurus

Question

Check for modification failure in content Integration using VisualSVN Server and Cruisecontrol.net

Answer 1

+1 A:

Server certificate verification failed: issuer is not trusted

Either connect via HTTP or add the CA certificate to the build machine.

Paolo 2010-04-29 12:02:56

Answer 2

+1 A:

The subversion error message says

svn: OPTIONS of 'https://sp-ci.sbsnetwork.local:8443/svn/IntranetPortal/Source': Server certificate verification failed: issuer is not trusted (https://sp-ci.sbsnetwork.local:8443).

This tells me that your 'svn' doesn't trust the https certificate of your server.

You can fix this by performing something like

svn info https://sp-ci.sbsnetwork.local:8443/svn/IntranetPortal/Source

as the user running cruisecontrol and then accept the certificate.

(Another option would be to make CruiseControl pass --trust-server-cert to svn, but I don't know which configuration option you need for that)

Bert Huijben 2010-04-29 12:03:58

Hi, I didn't quite understand what you said. Could you please explain what you meant by:" perform something like svn info https://sp-ci.sbsnetwork.local:8443/svn/IntranetPortal/Sourceas the user running cruisecontrol and then accept the certificate"Thanks for your answer...

Harun 2010-04-29 12:51:48

@Bert: Similar to my thoughts.

DilbertDave 2010-05-07 12:54:44

Answer 3

A:

Take a look here for a similar (but slightly different) problem that I had a little while ago.

Basically you cannot run the service as the normal 'SYSTEM' account, you need to specify and configure a local user, with the appropriate permissions and configure the service to run as that user.

Then log into the server as the user and run any svn command at the command line;
Bert suggests:

svn info https://sp-ci.sbsnetwork.local:8443/svn/IntranetPortal/Source

you should be prompted for the SVN username and password which are then cached in the appropriate location. You should also be prompted to accept the certificate - which you should do.

Now the service should run without any problems.

DilbertDave 2010-05-07 12:51:48

Hi, Actually my problem is not about starting ccnet as a service. I has no problem in doing so. But while Checking out using ccnet config the following error occurs:Failed task(s): Svn: CheckForModifications" is shown as the message. When i checked the build report, it says "Server certificate verification failed: issuer is not trusted".....for more details see my question....

Harun 2010-05-10 04:57:24

Also when i try to manually checkout using the same url of the visualsvn server; a popup is shown which says "the certificate not trusted, whether to continue with this". After accepting it permanently the checkout works fine. But when i tried through ccnet config the error i mentioned in my previous comment happens. Do you have any suggestions to solve it?..

Harun 2010-05-10 06:14:05

Ok - I'm not 100% sure what you mean by 'checking out using ccnet config'. If everything works fine when running as a service then when do you see the error?My problems were due to accessing SVN via https because when I ran CCNet as a service I needed to ensure that the user that the service was running as had a valid certificate. Logging in as that user and running an svn command allowed me to accept the certificate and all was well.

DilbertDave 2010-05-10 18:45:35

Actually i am trying to checkout my project from a repository(in svn server) for continuous integration. For that i am configuring the ccnet.config file to do the process. As per my knowledge you are trying to access svn server through https. In that case if the certificate is not valid a popup is shown which says "the certificate not trusted, whether to continue with this". After accepting it permanently the svn run works fine. But in my case as i am working through dashboard interface of ccnet i won't get the popup to do so.....

Harun 2010-05-11 11:52:47

I'm still not 100% sure what is going on there - and it looks like nobody else here does either. All I can suggest is to post a question on the CCNet Group on Google (linking back here of course). http://groups.google.com/group/ccnet-user

DilbertDave 2010-05-15 10:43:47

Answer 4

A:

I was trying to do the continuous integration in a windows server domain. The domain controller server should issue a certificate for the svn server(installed in one of the domain). Then import the issued certificate to svn server.

The process include two steps:

1) creating a request to issue a certificate from domain controller.

           For that follow the steps:
                 i) open visual svn server
                 ii) "right click" **visualSVN Server(Local)** and "select" 
                      **properties**
                 iii) "select" **change certificate** in **cetificates**
                 iv) "check" the **prepare certificate request** and "provide" the 
                      domain controller as server and do as asked.
                  v) "save" the request as **.req extension** and **finish** the 
                     process

2) Submitting the .req file to the domain controller to get the certificate

           For that follow the steps:
                  i) run **cmd**
                  ii) run **certreq -submit -attrib "CertificateTemplate: WebServer" 
                        .req file with its path** 
                  iii) save the certificate with **.cer** extension.
                  iv) do **i,ii,iii** of the **step 1**  
                   v)  "check" the **Import Signed Certificate** and "browse" the 
                      **.cer file** and install it.

Harun 2010-05-11 12:46:27

ansaurus

tags:

views:

answers:

Check for modification failure in content Integration using VisualSVN Server and Cruisecontrol.net

related questions