Python library installation command 'pip' is not working with Cloud SWG
search cancel

Python library installation command 'pip' is not working with Cloud SWG

book

Article ID: 229183

calendar_today

Updated On:

Products

Cloud Secure Web Gateway - Cloud SWG

Issue/Introduction

Python library installation command 'pip' is not working with Cloud SWG.

OR

pip.exe install <package name>   is failing with Cloud SWG.

Environment

WSS TLS interception

Package Installer for Python(PIP)

Cause

Package Installer for Python(PIP) checks certificate for "pypi.python.org" and "files.pythonhosted.org".

With WSS intercepting those destinations the certificate check done by pip will fail.

Resolution

In order to not use certificate pinning you can use the command instead of the default pip command:

pip.exe install --trusted-host pypi.org --trusted-host pypi.python.org --trusted-host files.pythonhosted.org   <package name>

Alternatively, you can add these domains in SSL/TLS interception bypass:

  • pypi.python.org
  • files.pythonhosted.org
Powered by Wolken Software