New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Connect via PE - Disable Proxy - Authentication Failed (Self signed certificate in certificate chain) #7901
Comments
I've found the similar link : https://github.com/CawaMS/StorageExplorerTroubleshootingGuide/blob/master/se-troubleshooting-guide.md#self-signed-certificate-in-certificate-chain After executing: Execute s_client -showcerts -connect microsoft.com:443 I found no self-signed certs are used. ("No client certificate CA names sent") |
@KennyM86 Please update your version of Storage Explorer to the latest available (1.33.1 as of today). 1.23.0 is quite old (almost 3 years old) and is no longer supported. Storage Explorer has received major improvements since then. If you are still encountering issues after upgrading, here are some things you can try:
|
The message you referenced is expected. As far as I know, our error is about SSL certificates (aka. server certificates). They are different from client certificates. To send client certificates, there should have been a -cert argument in the openssl command. You should look at the server certificate(s) in the command output and see if there are any self-signed certificates. Let us know if you don't see any server certificates in the command output. |
Ah, I thought I always updated 'on close' but indeed it did nothing in the past apparently. I manually updated to latest version but problem still exists.
@JasonYeMSFT :
|
@KennyM86 your best bet with certificate errors is to stay in system proxy mode, and try to work things out using that. However, it does sound like you have quite a bit unique network constraints going on here. At this point I would recommend you open an Azure support ticket via the portal. |
Preflight Checklist
Storage Explorer Version
1.23.0
Regression From
No response
Architecture
x64
Storage Explorer Build Number
20220223.14
Platform
All
OS Version
Windows 10
Bug Description
When disabling proxy server to be able to connect to storage account via Private Endpoint, re-authentication is needed and fails.
After authenticating, it gives the following error message:
{
"message": ""{\n \"name\": \"Error\",\n \"message\": \"self signed certificate in certificate chain\",\n \"stack\": \"Error: self signed certificate in certificate chain\\n at TLSSocket.onConnectSecure (node:_tls_wrap:1530:34)\\n at TLSSocket.emit (node:events:394:28)\\n at TLSSocket._finishInit (node:_tls_wrap:944:8)\\n at TLSWrap.ssl.onhandshakedone (node:_tls_wrap:725:12)\",\n \"code\": \"SELF_SIGNED_CERT_IN_CHAIN\"\n}""
}
Enabling proxy = Working authentication, but access storage via public endpoint
Disabling proxy = Authentication not working
Steps to Reproduce
Actual Experience
{
"message": ""{\n \"name\": \"Error\",\n \"message\": \"self signed certificate in certificate chain\",\n \"stack\": \"Error: self signed certificate in certificate chain\\n at TLSSocket.onConnectSecure (node:_tls_wrap:1530:34)\\n at TLSSocket.emit (node:events:394:28)\\n at TLSSocket._finishInit (node:_tls_wrap:944:8)\\n at TLSWrap.ssl.onhandshakedone (node:_tls_wrap:725:12)\",\n \"code\": \"SELF_SIGNED_CERT_IN_CHAIN\"\n}""
}
Expected Experience
Login succesfull
Access Storage Account via PE
Additional Context
No response
The text was updated successfully, but these errors were encountered: