Switch to Certificated-based authentication for importing VisualSVN repository seed (`Access is denied`)
I have a master 'VisualSVN server`. It contains tens of repositories with many revisions.
In order to have a replication, I have configured a Slave Server.
Currently I can create new Slave VDFS repositories and make them in sync with Master Server with no issues and all configuration to allow Slave partner to connect to Master server using a self-signed certificate is done properly.
Since number of repositories is not small, so I tried to use method described in Deploying VDFS slave repositories using replication seeds.
All the process goes well until I tried to import repository to master server and Master server says: Access is denied. As I already mentioned, I can connect to Master server using certificate that I generated but for Importing repository there are not options to tell the VisualSVN Server to authenticate the Slave Server by certificate.
I saw this in the master server event logs:
It said that Active Directory authentication method is used while I should use Certificate for authentication.
I tried to do this using VisualSVN PowerShell Import-SvnRepository Command however it also failed as well and here is the log:
PS E:\Repositories> Import-SvnRepository D:\Temp\Repo1\Repo1 -DestinationName Repo1 -Verbose
VERBOSE: Running the following operation: CIM method Import on the ROOT\VisualSVN\PS_SvnRepository CIM object.
Import-SvnRepository : Failed to access the remote VDFS service
The remote procedure call failed: Access is denied.
At line:1 char:1
+ Import-SvnRepository D:\Temp\Repo1\Repo1 -DestinationNa ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (PS_SvnRepository:ROOT\VisualSVN\PS_SvnRepository) [Import-SvnRepository],
CimException
+ FullyQualifiedErrorId : HRESULT 0x80041001,Import-SvnRepository
The help for this command is as below:
The question is how can I enforce Certifcate-Based authentication for Importing the repository from the repository seed?
Unfortunately, the current version of the VisualSVN Server Manager console doesn't let you import a replication seed that has to connect to master using certificate-based authentication. So you need to modify the replication settings of the replication seed before importing it.
Export a replication seed and then modify its /db/vdfs.conf file. You can also use the /db/vdfs.conf file from your other working slave repositories as an example.
vdfs.conf:
[general]
role = slave
master-hostname = MASTER-SERVER-HOSTNAME
master-path = MASTER-REPOSITORY-NAME
[authentication]
type = schannel
mutual = yes
Change mutual to no if you don't want to use mutual authentication by certificates.
After you modify /db/vdfs.conf of the replication seed, try importing it again.
- Why ParseExact is not converting my variable to DateTime
- Extracting RFC 3161 timestamp from digitally signed PDF using Javascript
- Python Requests - SSL error for client side cert
- A certificate chain could not be built to a trusted root authority
- How do I commit to multiple repositories at the same time, with separate commit usernames based on each repository setting
- Unable to find valid certification path to requested target error on IntelliJ IDEA
- Generate DER format public key from PEM format certificate and PEM format public key
- Xcode Command /usr/bin/codesign failed with exit code 1 : errSecInternalComponent
- How to deal with mixed content in a website which should be secured as https?
- Tomcat server AND HTTP Client accepting expired self-signed certificate
- Setting up SSL certificate in Visual Studio
- The CA certificate does not have the basicConstraints extension as true
- Python/win32crypt, "Access is denied" when trying to save a certificate to "local machine" Windows store, but working with "current user" store
- Accessing a remote k3s cluster via Lens IDE
- Create a .crt for android
- Could not create SSL/TLS secure channel - Could the problem be a proxy server?
- Validate certificate chain with powershell
- How to get Guacamole working with RDP Certificate?
- Convert .pem to .crt and .key
- Azure Certificate Issue
- Certificates informations
- Switch to Certificated-based authentication for importing VisualSVN repository seed (`Access is denied`)
- What causes "Neither PUB key nor PRIV key:: nested asn1 error" when building a public key in ruby?
- openssl: how to convert pfx into pem in a script
- Certificate error DLG_FLAGS_SEC_CERT_CN_INVALID
- why doesn't java send the client certificate during SSL handshake?
- "Warning: unable to build chain to self-signed root for signer" warning in Xcode 9.2
- Certificate ending on 28/06/21 how to update it?
- SSL Certificate missing from dropdown in SQL Server Configuration Manager
- certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format