Hello everyone,
I have created my certificates and I have mounted them onto docker container , and I am able to access the pmm-server dashboard ‘securely’.
Now when I try to enable ssl connection between pmm-client and pmm-server, using this command:
pmm-admin config --server-url=https://<user>:<password>@<server IP>
but I am getting the following error,
Failed to register pmm-agent on PMM Server: Post "https://XXXXXXX:443/v1/management/Node/Register": x509: certificate signed by unknown authority.
And I am using ubuntu focal, and I have used this command in order add my certificate to the trusted list,
sudo update-ca-certificates
Thanks
1 Like
Can anyone please elaborate more about mounting my own certs to docker for enabling ssl?
It very strange that I am facing this error, the cert is added to the trusted root certificate store, and my connection to pmm-server is secure, but still this error pops up.
Thanks
1 Like
More informaation,
So on my pmm-server i have created my own certs and I have made the browser trust those certs by adding them into keychain access in macOS, so hence the website is ‘secured’ now.
Now i want to connect my pmm-client with pmm-server but I am getting the above mentioned error, it works when i use –server-insecure-tls but I do not want to do that as it will be an insecure connection.
More information:
- I am using ubuntu focal and my pmm-server is running inside docker, I have first created the certificates and then mounted them onto the docker container.
- I have updated my CA trust store using update-ca-certificates
- On my pmm-client which is running on my other Virtual machine is hosted directly on my VM and not inside any docker.
- I have also created certificates on my pmm-client and I have also used update-ca-certificates
1 Like