check_https error: Cannot retrieve server certificate.

John Stile john at stilen.com
Tue Oct 25 03:03:24 CEST 2005

Previous message: check_https error: Cannot retrieve server certificate.
Next message: Nagios_Grapher RRD Error
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

John Stile wrote:

>On Thu, 2005-10-13 at 15:27 -0400, Petrucci, Joseph wrote:
>  
>
>>The only difference I am seeing in your call and one that I use that works is I also supply the URL.
>>
>>    
>>
>>>-----Original Message-----
>>>From: nagios-users-admin at lists.sourceforge.net
>>>[mailto:nagios-users-admin at lists.sourceforge.net]On Behalf Of 
>>>John Stile
>>>Sent: Thursday, October 13, 2005 3:19 PM
>>>To: nagios-users at lists.sourceforge.net
>>>Subject: [Nagios-users] check_https error: Cannot retrieve server
>>>certificate.
>>>
>>>
>>>What does this error mean:
>>>Command:
>>> /usr/lib/nagios/plugins/check_http --ssl -H localhost
>>>Error:
>>> CRITICAL - Cannot retrieve server certificate.
>>>
>>>I turned on debugging, but nothing was logged (In nrpe.cfg, set
>>>'debug=1').
>>>
>>>I verified that an ssl certificate is served to the https client, that
>>>is valid, but self signed by me.
>>>      
>>>
>
>I verified the ssl connection to the local host with:
>  openssl s_client -connect localhost:443  
>
>Then I tried many versions of the check_http incantation, to no avail: 
>  /usr/lib/nagios/plugins/check_http -S -H localhost -p 443
>    CRITICAL - Cannot retrieve server certificate.
>  
>  /usr/lib/nagios/plugins/check_http -S -H localhost -p 443
>    CRITICAL - Cannot retrieve server certificate.
>
>  /usr/lib/nagios/plugins/check_http -S -H localhost -u https://localhost -p 443
>    CRITICAL - Cannot retrieve server certificate.
>
>  /usr/lib/nagios/plugins/check_http -S -H localhost -u https://localhost
>    CRITICAL - Cannot retrieve server certificate.
>
>Is there anything else I could be doing wrong?
>On this client, I have installed the following debian 3.1 packages:
>nagios-common           2:1.3-cvs. 2:1.3-cvs.
>nagios-nrpe-plugin      2.0-7      2.0-7
>nagios-nrpe-server      2.0-7      2.0-7
>nagios-plugins          1.4-6      1.4-6
>nagios-text             2:1.3-cvs. 2:1.3-cvs.
>  
>
SOLVED:
  Once I commented out 2 lines from my apache2 config, the check started 
wroking. 
  This is what I have in my apache2 config now.
       # SSL STUFF (START)
        SSLEngine On
        SSLCertificateFile /etc/apache2/ssl/apache.pem
        #SSLProtocol all
        #SSLCipherSuite HIGH:MEDIUM
       # SSL STUFF (END)



-------------------------------------------------------
This SF.Net email is sponsored by the JBoss Inc.
Get Certified Today * Register for a JBoss Training Course
Free Certification Exam for All Training Attendees Through End of 2005
Visit http://www.jboss.com/services/certification for more information
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null

Previous message: check_https error: Cannot retrieve server certificate.
Next message: Nagios_Grapher RRD Error
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list