Error message: ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1129)
checkmk is setup with our company SSL certificate.
I copied the root certificate (.crt) to /usr/local/share/ca-certificates/ and run update-ca-certificates.
With curl https://<fqdn> I don’t get any SSL error, so this seems to be ok.
Restapi with HTTP is working, chaning it to HTTPS I get the above error.
I already tried to replace lib/python3.9/site-packages/certifi/cacert.pem with a symlink to /etc/ssl/certs/ca-certificates.crt but this doesn’t help
This looks like the same problem we discussed here.
You can check the things from the last post with the modification for the .profile file.
What is also important in your case is, the ca-certificates file inside “~/var/ssl/” should also have a timestamp newer than you added your certificate. If this is not the case, CMK had not fetched the new certificates to his own cert store inside the site.
This topic was automatically closed 365 days after the last reply. New replies are no longer allowed. Contact an admin if you think this should be re-opened.