I have created my certificates and I have mounted them onto docker container , and I am able to access the pmm-server dashboard ‘securely’.
Now when I try to enable ssl connection between pmm-client and pmm-server, using this command:
pmm-admin config --server-url=https://<user>:<password>@<server IP>
but I am getting the following error,
Failed to register pmm-agent on PMM Server: Post "https://XXXXXXX:443/v1/management/Node/Register": x509: certificate signed by unknown authority.
And I am using ubuntu focal, and I have used this command in order add my certificate to the trusted list,
Can anyone please elaborate more about mounting my own certs to docker for enabling ssl?
It very strange that I am facing this error, the cert is added to the trusted root certificate store, and my connection to pmm-server is secure, but still this error pops up.
So on my pmm-server i have created my own certs and I have made the browser trust those certs by adding them into keychain access in macOS, so hence the website is ‘secured’ now.
Now i want to connect my pmm-client with pmm-server but I am getting the above mentioned error, it works when i use –server-insecure-tls but I do not want to do that as it will be an insecure connection.
- I am using ubuntu focal and my pmm-server is running inside docker, I have first created the certificates and then mounted them onto the docker container.
- I have updated my CA trust store using update-ca-certificates
- On my pmm-client which is running on my other Virtual machine is hosted directly on my VM and not inside any docker.
- I have also created certificates on my pmm-client and I have also used update-ca-certificates