Detail
The error "TLS verify result: unable to get local issuer certificate" means that the Aerospike Server has been unable to verify the provided certificate against a CA certificate.
Answer
There are 2 common causes of this error:
- Valid CA certificates have not been placed in the ca-path directory
- Hashes allowing Aerospike Server to quickly identify which certificate to use are not present. These hashes are symbolic links to the certificates, where the name of the symlink is the hash. These hashes can be generated in one of the following ways:
- Running "c_rehash <ca-path-dir>"
- Running "openssl rehash <ca-path-dir>"
Notes
c_rehash requires the openssl-perl package to be installed