"http: TLS handshake error from 127.0.0.1:xxxxx: remote error: tls: bad certificate" error on Diego Cell in Isolation Segment on Tanzu Application Service for VMs
Article ID: 298097
Updated On:
Products
VMware Tanzu Application Service for VMs
Issue/Introduction
When using Isolation Segments, the following error is seen on the Diego Cell, loggr-syslog-agent/loggr-syslog-agent.stderr.log:
The log file, prom_scraper/prom_scraper.stderr.log, shows:
http: TLS handshake error from 127.0.0.1:xxxxx: remote error: tls: bad certificate
The log file, prom_scraper/prom_scraper.stderr.log, shows:
[id: metron, instance_id: <id>, metric_url: https://127.0.0.1:14824/metrics]: Get "https://127.0.0.1:14824/metrics": x509: certificate is valid for loggregator-agent-metrics, not loggregator_agent_metrics
Environment
Product Version: 2.9
Resolution
This issue is caused by a discrepancy between how Tanzu Application Service for VMs (TAS for VMs) and the Isolation Segment tile generated certificates and the server names.
This issue is resolved in the following Isolation Segment versionsTo resolve this issue, upgrade Isolation Segment.
This issue is resolved in the following Isolation Segment versionsTo resolve this issue, upgrade Isolation Segment.
- Isolation Segment v2.8.11
- Isolation Segment v2.9.5
- Isolation Segment v2.10+
Feedback
Yes
No
Powered by
