Ojas
08/23/2022, 7:58 AMJason
08/23/2022, 11:52 AMzwass
Ojas
08/23/2022, 3:45 PMzwass
Ojas
08/23/2022, 3:49 PMzwass
Ojas
08/23/2022, 3:50 PMzwass
--fleet-certificate
empty when creating packages. If you did specify --fleet-certificate
, you need to make sure the certificate doesn't change (or is still trusted by the cert chain you provide to that flag). If it only works when netskope is off, I assume that's because netskope is MITMing your TLS traffic and using a different certificate that doesn't verify.Ojas
08/23/2022, 3:53 PMzwass
--insecure
then your agents could be communicating with any server, because it skips the certificate validation. Definitely do not recommend for production.Ojas
08/23/2022, 3:56 PMzwass
/opt/orbit/certs.pem
.Ojas
08/23/2022, 3:58 PM