Ad Widget

Collapse

Ceph x509 cannot validate certificate

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • sipvoip
    Junior Member
    • Oct 2021
    • 2
    #1

    Ceph x509 cannot validate certificate

    Trying to get Ceph Zabbix2 Agent working, I have tried both localhost and 127.0.0.1 but it does not like my self signed cert.
    • Cannot fetch data: Post "https://zabbix:***@127.0.0.1:8003/request?wait=1": x509: cannot validate certificate for 127.0.0.1 because it doesn't contain any IP SANs.
    • Cannot fetch data: Post "https://zabbix:***@localhost:8003/request?wait=1": x509: certificate is not valid for any names, but wanted to match localhost.
    Last edited by sipvoip; 11-10-2021, 11:43.
    Tags: ceph, x509
    • jeeva
      Junior Member
      • May 2021
      • 4
      #2
      Having the same issue, were you able to resolve it ?

        Comment

        • sipvoip
          Junior Member
          • Oct 2021
          • 2
          #3
          Yes, still an issue.

            Comment

            • Justin417
              Junior Member
              • Feb 2018
              • 13
              #4
              I was able to resolve this issue after locating this document: https://git.zabbix.com/projects/ZBX/...Frelease%2F5.4

              Since the CEPH plugin generates self-signed certificates by default, the SSL verification was failing. I had to add the following to my zabbix_agent2.conf file:
              HTML Code:
              Plugins.Ceph.InsecureSkipVerify=true
              Then I had to restart zabbix-agent2. Now I was able to query data from the CEPH API successfully.

                Comment

                Previous template Next
                Working...