search cancel

EPAgent httpSvcAvailability.pl plugin returns "HTTP Error Code=500" for web server which uses self-signed SSL certificate.

book

Article ID: 41838

calendar_today

Updated On:

Products

CA Application Performance Management Agent (APM / Wily / Introscope) INTROSCOPE

Issue/Introduction

When running the EPAgent httpSvcAvailability.pl plugin against an internal web server which has a self-signed SSL certificate one of these messages will be received:

HTTP Error Code=500, Message=Can't connect to ***.***.***.***:443 

HTTP Error Code=500, Message=Can't connect to ***.***.***.***:443 (certificate verify failed)

 

 

 

 

Cause

SSL/HTTPS clients check the Subject Alternative Name specified in the certificate against the hostname, and report an error if they do not match. This is commonly the case with many automatically generated self-signed certificates, or when using a CNAME to reach the SSL host and the cert isn't generated with Subject Alternative Names.

Environment

Release: CEMUGD00200-9.7-Introscope to CA Application-Performance Management-Upgrade Main
Component:

Resolution

To prevent the hostname certificate verification check add this line to the file EPAgent/epaplugins/lib/perl/Wily/HTTP.pm at the end of the "Globals" section and just before "Subroutines":

$ENV{PERL_LWP_SSL_VERIFY_HOSTNAME}=0; 

This will disable the hostname verification via the perl LWP (World-Wide Web library for Perl)