Receive "curl: (60) SSL certificate problem: unable to get local issuer certificate" error when accessing the apps
search cancel

Receive "curl: (60) SSL certificate problem: unable to get local issuer certificate" error when accessing the apps

book

Article ID: 298442

calendar_today

Updated On:

Products

VMware Tanzu Application Service for VMs

Issue/Introduction

- Receive the below error message when curling to the app url. 

$ curl https://tanzu-java-web-app-###.example.com
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.

 - The app url can be accessed with no certificate error by adding the -k or --insecure parameter. 

$ curl https://tanzu-java-web-app-###.example.com -k
Greetings from Tanzu!

 - An alert of Your connection to this site is not secure is showing up when accessing the app via browsers.

 - You already set the default_tls_secret when installing Cloud Native Runtimes package.

cnrs:
  default_tls_secret: tanzu-system-ingress/cnrs-tls-cert



Environment

Product Version: Other

Resolution

Referencing Replacing the default ingress issuer to set shared.ingress_issuer in the tap-values.yaml file to consume the certificate which you set in default_tls_secret.

#! my-tap-values.yaml
#! ...
shared:
  ingress_issuer: letsencrypt-production
#! ...



Powered by Wolken Software