https://github.com/osquery/osquery logo
#fleet
Title
# fleet
i

Ivan

02/17/2022, 2:30 PM
Hello everyone. During installation and configuration, fleet made a mistake and created a certificate with a period of 1 year. Is there a way to replace the server certificate without replacing .pem on the client side?
s

Sarah Gillespie

02/17/2022, 5:03 PM
Hi Ivan, would you mind sharing any more detail about how the error occurred so we can look into it on our end?
i

Ivan

02/18/2022, 6:55 AM
Thank you for your attention. The fleet server has an expired certificate and now clients cannot connect. TLS handshake error from 10.114.33.8849267 local error: tls: bad record MAC. After replacing the server certificate, the .pem client certificate also changes. The problem is the lack of technical support in some branches of the company and the lack of remote management.
s

Sarah Gillespie

02/21/2022, 5:10 PM
Hi Ivan, have you had a chance to check out some of the TLS resources in the FAQ? Please let us know where if are still running into trouble!
30 Views