Ronnie
04/02/2019, 1:23 AMFailed enrollment request to <https://fleetserver.com/api/v1/osquery/enroll> (Request error: certificate verify failed) retrying...
I have my Osquery --tls_server_certs
config flag set to use one of the same TLS certs that NGINX uses for SSL on the server, and Fleet is running without issues... what could I be doing wrong here?
The following also pops up as an error.
E0401 23:08:37.819293 31502 init.cpp:593] Cannot activate tls logger plugin: No node key, TLS logging disabled.
zwass
Ronnie
04/02/2019, 1:43 AM.cer
and .key set with NGINX automatically mean't that I can use --tls_server_certs
and point it to the same .cer
zwass
Ronnie
04/02/2019, 1:48 AM* SSL certificate problem: unable to get local issuer certificate
* Closing connection 0
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: <https://curl.haxx.se/docs/sslcerts.html>
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
zwass
--cacert /path/to/full/cert/chain
to the curl
commandRonnie
04/06/2019, 1:47 AM