I’m new to golioth and have a problem with certificate-based authentication. I have followed the instructions
and set up the certificates. I also uploaded the golioth.crt.pem to golioth. If I now try to connect with e.g. the java cf-client, there is a problem in the DTLS handshake. I recorded the connection setup once with Wireshark.
@Soeren that looks good from the client certs perspective (i.e. keystore), but I believe the issue you are facing is that the client (cf-client) is unable to validate the certificate supplied by the server (golioth). You should be able to configure this using the -t, --trusts=<trusted> flag or, alternatively if you are just testing, --trust-all. (options found in https://github.com/eclipse-californium/californium.tools/blob/main/cf-client/README.md#arguments)