-
Documentation & bug reporting acknowledgmentYes, I read it Describe your problemHello, I already found the previous discussion that were resolved (PR-142)
I have my ROOT CA cert in Root Cert Store and SUB CA in Sub Cert Store. GLPI server is behind traefik proxy, the glpi server certificate is bas64 pem with the below format:
With
With
Is there an issue on how I configured my CAs ? Is it normal that glpi agent can't lookup on Root trust store and intermediate trust store to verify the said error ? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 3 replies
-
Hello @s0p4L1n3, can you share the output of the following command run from an administrative console and from the glpi-agent installation folder ?
This should show if the agent is extracting the CA certificate from the keystore you're expecting. And this should also show some more detailed SSL debug datas. You can also test the result adding |
Beta Was this translation helpful? Give feedback.
Indeed I don't see any error regarding SSL: it just works with the certificate in found in keystore as the following line are telling when
no-ssl-check=0
:The
400 Bad Request
error is normal as the agent is requesting an url for Collect task which can only be handled by GlpiInventory plugin and if you had changed the server url to the expected one. Requesting only Collect task here is just for the test, to limit the output to only what's really needed, i.e. the SSL debugging output.So t…