I use SRV solution in my puppet architecture. When trying to setup a new puppet master and CA and view my certificates I get this error: puppetserver ca list --all Fatal error when running action ...

I am generating a self-signed certificate for a development server but I need it to be trusted in order to use some of the tools that will be using the certificate. This is what I have tried: ope...

Currently we're using an approach of putting CA Certificates on the server to access third party APIs. certificate_path = os.path.join(CERT_PATH, 'cacert.pem') certificate_key_path = os.path.join(...

Since downloading the new version of Postgres (Version 16.1) I am unable to properly work with pip. Therefore, I am unable to install packages, resulting in the following error: ERROR: Could not in...

We have a Spring Boot application for REST web services which is still under development. And we are using self signed certificate for now. Now, it will be deployed into a system along with 1 more ...

I am trying to deploy an application with k3s kubernetes. Currently I have two master nodes behind a load-balancer, and I have some issues connecting worker nodes to them. All nodes and the load-ba...

I have an azure aks cluster and a local kubeconfig: apiVersion: v1 kind: Config clusters: - name: my-cluster cluster: certificate-authority-data: LS0...0tCg== server: https://api-server:443 cont...

I use self-signed CA cert to sign other certificates. For some certs I need to specify subject alternative names. I can specify them during request generation (openssl req ...) and I see them in .c...

Here is a great SO answer which covers the creation of self-signed CA and then signing executables with the obtained certificates: How do I create a self-signed certificate for code signing on Wind...

By default unique_subject is set to yes, which prevents you from signing multiple certificates with the same distinguished name. Attempting to sign such a certificate will result in the following e...

I've set up my own CA following the directions from Jamie and issued my first certs a year ago happily. They have now expired, but I'm having a devils own time trying to renew them. I have tried th...

I've installed Kubernetes with docker-for-desktop. Now I want to create a user (following RBAC principle). I'm using private certificates and want to sigh them against the ca.crt of the cluster. F...

I've been unable to git clone just about any github repo because of this error fatal: unable to access 'github_url': server certificate verification failed. CAfile: /home/ubuntu/.ssh/rel3_dodroo...

I am getting an error when I am trying to pull docker image. We have set up the proxy, and in our organization we have explicit proxy, so to access external server we cannot do without setting it. ...

During my search, I found several ways of signing a SSL Certificate Signing Request: Using the x509 module: openssl x509 -req -days 360 -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -o...

I have a certificate chain that looks like this: root CA -> intermediate CA -> client certificate. How can I validate that a received certificate is explicitly created by "root CA"? To valid...

I've been researching how to set up a private certificate authority for an intranet, and one of the tools I read about is tinyca. The official web site according to Google and Wikipedia is ht...

I have a docker swarm with traefik running in it and I want to be able to serve Grafana in https which is currently in http. I've tried with the following traefik compose configuration: version: ...

In C#, when using HttpClient, how can I connect to the https server that is using either self-signed certificate (for testing) or a custom CA that is not part of the machine's trust-store? Note tha...

From a result of security scan program, I have a need to restrict the Certificate Authorities the app trusts. The scan result points out the line at webView.loadUrl("https://example.com/page");. I...

Although, there are similar questions, and even good answers, they either don't concern themselves with localhost specifically, or ask about one particular option/solution (self-signed vs CA)...

when making Api requests to binance , after building main.py to exe using pyinstaller, I get this error: OSError: Could not find a suitable TLS CA certificate bundle, invalid path: C:\Users\ADMINI~...

I'm trying to connect on a mongodb server, to connect I have to provide a CA cert file and also tls cert file. When I use the following command I don't have issue $ mongo --host customhost:port DB ...

I have a go program that connects to an internal API using the httpClient (it's all generated by swagger-codegen). The internal API is using https and internal certificates with our internal CA. ...

I want to create mock CA and set QCStatements extension, but I can't find any information about setting it using OpenSSL. I was looking about I found some old topics where people looking for this i...