Problems with the SSL certificate verification.

By: Alejandro Calderon user 11 Apr 2019 at 7:38 p.m. CDT

4 Responses
Alejandro Calderon gravatar
I'm try to use Gluu with my different clients but it says that there's a problem with the SSL verification, my server SSL certificate seems to be working correctly when I type https://mydmain.org. If I login with WordPress using a plugin I have used before for Gluu's SSO, it returns me this error: cURL error 60: SSL certificate problem: unable to get local issuer certificate. The solution I use, it was to unable the SSL verification during authorization in my plugin, but it is not optimal because I'm still having a similar error when I try to use Postman: Could not get any response There was an error connecting to https://mydomain.org Why this might have happened: The server couldn't send a response: Ensure that the backend is working properly Self-signed SSL certificates are being blocked: Fix this by turning off 'SSL certificate verification in Settings > General Proxy configured incorrectly Ensure that proxy is configured correctly in Settings > Proxy Request timeout: Change request timeout in Settings > General As in WordPress, I did the same disabling the SSL verification. Do you have any idea about how to fix this?
Ubuntu 16.04
closed

Answers

By Aliaksandr Samuseu staff 12 Apr 2019 at 12:06 a.m. CDT

Copy
Aliaksandr Samuseu gravatar
Hi, Alejandro. Could you rephrase your issue's description a bit? It's not clear which certificate is rejected by what. Please keep in mind we usually don't assist with configuration of 3rd-party software under Community Support, only with issues with our own products. If it's just some 3rd-party Wordpress plugin rejecting Gluu Server's certificate, you should seek help on its dedicated resources. By default, Gluu Server will use self-signed certificate. If this is what causes the issue, you either need to acquire one properly-signed by trusted CA instead, or somehow add your self-signed cert to trust store of your plugin (if it offers such option).

By Aliaksandr Samuseu staff 23 Apr 2019 at 2:41 p.m. CDT

Copy
Aliaksandr Samuseu gravatar
Hi, Larry. > I have already takes SSL Certificate for HIPAA Training Do you mean you use it as you current Apache certificate in Gluu Server? And some other app you try to integrate with Gluu Server still rejects it? It just doesn't appear to me as our product's issue when put this way, unless I'm still missing your point. If that application rejects what you believe is a valid certificate, you should seek assistance on its dedicated resources. Just make sure you added your certificate correctly at Gluu. In particular, that a full chaing of trust is sent when TLS layer is established (i.e. all intermediate certificates and the root CA's certificate), not just certificate of the server itself. Please refer to Apache's docs for details on how to install certificate with a full chain of trust.

By Aliaksandr Samuseu staff 13 May 2019 at 9:33 p.m. CDT

Copy
Aliaksandr Samuseu gravatar
Closing the ticket as it seems to be out of scope of Community Support.

Post an answer